Re: [PATCH 18/27] bpf: Restrict kernel image access functions when the kernel is locked down

From: David Howells
Date: Mon Oct 23 2017 - 10:51:27 EST

Next message: David Howells: "Re: [PATCH 18/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Previous message: David Howells: "Re: [PATCH 12/27] x86/msr: Restrict MSR access when the kernel is locked down"
In reply to: Alexei Starovoitov: "Re: [PATCH 18/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Next in thread: David Howells: "Re: [PATCH 18/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx> wrote:

> If you want to lock down read access you'd need to disable
> not only bpf, but all of kprobe and likey ftrace, since
> untrusted root can infer kernel data by observing function
> execution even if it cannot load modules and bpf progs.

Okay.

David

Next message: David Howells: "Re: [PATCH 18/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Previous message: David Howells: "Re: [PATCH 12/27] x86/msr: Restrict MSR access when the kernel is locked down"
In reply to: Alexei Starovoitov: "Re: [PATCH 18/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Next in thread: David Howells: "Re: [PATCH 18/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]