Re: [PATCH 6/7] Allow users to require UFFD_SECURE

From: Andy Lutomirski
Date: Sat Oct 12 2019 - 19:13:27 EST

Next message: Alexei Starovoitov: "Re: [PATCH v5 bpf-next 00/15] samples: bpf: improve/fix cross-compilation"
Previous message: Andy Lutomirski: "Re: [PATCH 3/7] Add a UFFD_SECURE flag to the userfaultfd API."
In reply to: Daniel Colascione: "[PATCH 6/7] Allow users to require UFFD_SECURE"
Next in thread: Daniel Colascione: "[PATCH 7/7] Add a new sysctl for limiting userfaultfd to user mode faults"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Oct 12, 2019 at 12:16 PM Daniel Colascione <dancol@xxxxxxxxxx> wrote:
>
> This change adds 2 as an allowable value for
> unprivileged_userfaultfd. (Previously, this sysctl could be either 0
> or 1.) When unprivileged_userfaultfd is 2, users with CAP_SYS_PTRACE
> may create userfaultfd with or without UFFD_SECURE, but users without
> CAP_SYS_PTRACE must pass UFFD_SECURE to userfaultfd in order for the
> system call to succeed, effectively forcing them to opt into
> additional security checks.

This patch can go away entirely if you make UFFD_SECURE automatic.

Next message: Alexei Starovoitov: "Re: [PATCH v5 bpf-next 00/15] samples: bpf: improve/fix cross-compilation"
Previous message: Andy Lutomirski: "Re: [PATCH 3/7] Add a UFFD_SECURE flag to the userfaultfd API."
In reply to: Daniel Colascione: "[PATCH 6/7] Allow users to require UFFD_SECURE"
Next in thread: Daniel Colascione: "[PATCH 7/7] Add a new sysctl for limiting userfaultfd to user mode faults"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]