Re: [PATCH 1/9] Known exploit detection

From: One Thousand Gnomes
Date: Fri Dec 13 2013 - 06:11:17 EST

Next message: Caizhiyong: "RE: [PATCH] mtd: increase max page/OOB size to support 16K pagesizeNAND"
Previous message: One Thousand Gnomes: "Re: [PATCH 1/2] misc: Reserve minor for VFIO"
In reply to: Kees Cook: "Re: [PATCH 1/9] Known exploit detection"
Next in thread: Jiri Kosina: "Re: [PATCH 1/9] Known exploit detection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Totally true, but there's a million way to DoS a local machine. At
> least this way shows who's doing it. It's the DoSes that don't include
> attribution that I worry about. :)

So long as they compile out to nothingness for all the systems where this
stuff is useless (ie most of them because they are embedded or phones
etc) I don't see a big problem.

Note however if you trip one of those in any code with the console lock
held and your log goes to the consoles due to printk level or similar
you'll probably hang the box.

There are some other lock sequences that are going to do that too, so it
can't be placed arbitarily but will need the locking assumptions for each
non-obvious one documented clearly.

Alan
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Caizhiyong: "RE: [PATCH] mtd: increase max page/OOB size to support 16K pagesizeNAND"
Previous message: One Thousand Gnomes: "Re: [PATCH 1/2] misc: Reserve minor for VFIO"
In reply to: Kees Cook: "Re: [PATCH 1/9] Known exploit detection"
Next in thread: Jiri Kosina: "Re: [PATCH 1/9] Known exploit detection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]