Re: [PATCH 6/7] kdb: Mark safe commands as KDB_SAFE andKDB_SAFE_NO_ARGS

From: Alan Cox
Date: Thu Jul 26 2012 - 13:03:32 EST

Next message: Tim Gardner: "[PATCH v2] cx18: Declare MODULE_FIRMWARE usage"
Previous message: Randy Dunlap: "Re: [PATCH] xconfig: Display dependency values in debug_info"
In reply to: Anton Vorontsov: "[PATCH 6/7] kdb: Mark safe commands as KDB_SAFE and KDB_SAFE_NO_ARGS"
Next in thread: Anton Vorontsov: "Re: [PATCH 6/7] kdb: Mark safe commands as KDB_SAFE andKDB_SAFE_NO_ARGS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> The following commands were marked as "safe":
>
> Clear Breakpoint
> Enable Breakpoint
> Disable Breakpoint
> Display exception frame
> Stack traceback

This is sufficient to steal cryptographic keys in many environments. In
fact you merely need two or three breakpoints and to log the order they
are hit through the crypto computation.

> Display stack for process

Exposes all sorts of user data unless you mean just the call trace, in
which case it's still quite useful.

> Display stack all processes

Ditto

> Send a signal to a process

Like say sending SIGSTOP to security monitoring threads or the battery
manager on locked devices that rely on software battery management ?

It's an interesting idea but you need almost nothing to extract keys from
a system or to subvert it.

Alan
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Tim Gardner: "[PATCH v2] cx18: Declare MODULE_FIRMWARE usage"
Previous message: Randy Dunlap: "Re: [PATCH] xconfig: Display dependency values in debug_info"
In reply to: Anton Vorontsov: "[PATCH 6/7] kdb: Mark safe commands as KDB_SAFE and KDB_SAFE_NO_ARGS"
Next in thread: Anton Vorontsov: "Re: [PATCH 6/7] kdb: Mark safe commands as KDB_SAFE andKDB_SAFE_NO_ARGS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]