Re: Refining the threat model
- From: Rob Taylor <rob taylor codethink co uk>
- To: safety-list gnome org
- Subject: Re: Refining the threat model
- Date: Fri, 07 Nov 2014 20:03:55 +0000
On 07/11/14 19:22, Federico Mena Quintero wrote:
It's Friday. Read this over the weekend:
https://www.usenix.org/system/files/1401_08-12_mickens.pdf
Already read it ;)
In other news, I can now [1] launch a container which has a system bus
that is a kdbus endpoint [2] onto the host system bus, and I can also
launch weston-gears in a container and have it render on the host. [3]
I've got a bunch of figuring out to do on the attack surfaces, not least
because the host's /dev/kdbus/control is mounted in the guest (this may
not be necessary. it exposes knowlege of the host's buses and their
uids), and also /dev/dri (this is necessary for current wayland).
First things first though
- Add support for an endpoint onto the user bus
- Get it all into a shape that I can easily share with folks for
trying out and comment.
Have a good weekend,
Rob
[1] https://gitlab.com/rob.taylor/systemd/commits/nspawn-endpoint
[2] see Endpoint section in http://d-bus.googlecode.com/git/kdbus.txt
[3] you can try this at home by
- starting weston
- start a container with --bind=/run/users/<your
uid>/wayland-0:/root/wayland-0 --bind=/dev/dri
- in the container
$ touch /run/user/0/wayland-0
$ mount --bind /root/wayland-0 /run/user/0/wayland-0
$ weston-gears (or similar)
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
