[RFC v2 10/10] kdb: Allow access to sensitive commands to be restricted by default

From: Daniel Thompson
Date: Wed Apr 02 2014 - 11:44:41 EST

Next message: Daniel Thompson: "[RFC v2 09/10] kdb: Improve usability of help text when running in kiosk mode"
Previous message: Daniel Thompson: "[RFC v2 04/10] kdb: Rename kdb_register_repeat() to kdb_register_flags()"
In reply to: Daniel Thompson: "[RFC v2 04/10] kdb: Rename kdb_register_repeat() to kdb_register_flags()"
Next in thread: Daniel Thompson: "[RFC v2 09/10] kdb: Improve usability of help text when running in kiosk mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Currently kiosk mode must be explicitly requested by the bootloader or
userspace. It is convenient to be able to change the default value in a
similar manner to CONFIG_MAGIC_SYSRQ_DEFAULT_MASK.

Signed-off-by: Daniel Thompson <daniel.thompson@xxxxxxxxxx>
---
kernel/debug/kdb/kdb_main.c | 2 +-
lib/Kconfig.kgdb | 21 +++++++++++++++++++++
2 files changed, 22 insertions(+), 1 deletion(-)

diff --git a/kernel/debug/kdb/kdb_main.c b/kernel/debug/kdb/kdb_main.c
index 77b6e61..34f0989 100644
--- a/kernel/debug/kdb/kdb_main.c
+++ b/kernel/debug/kdb/kdb_main.c
@@ -47,7 +47,7 @@
#undef MODULE_PARAM_PREFIX
#define MODULE_PARAM_PREFIX "kdb."

-static bool kdb_kiosk;
+static bool kdb_kiosk = CONFIG_KDB_KIOSK_DEFAULT_ENABLE;
module_param_named(kiosk, kdb_kiosk, bool, 0600);

#define GREP_LEN 256
diff --git a/lib/Kconfig.kgdb b/lib/Kconfig.kgdb
index 358eb81..a284327 100644
--- a/lib/Kconfig.kgdb
+++ b/lib/Kconfig.kgdb
@@ -73,6 +73,27 @@ config KGDB_KDB
help
KDB frontend for kernel

+config KDB_KIOSK_DEFAULT_ENABLE
+ bool "KDB: enable kiosk mode at kernel boot time"
+ depends on KGDB_KDB
+ default n
+ help
+ Kiosk mode disables kdb commands that can be trivially used to
+ escalate privilege or dump sensitive data. Those commands that
+ remain are sufficient for certain types of fault diagnosis but
+ not fully fledged debugging.
+
+ Note that it is assumed that neither the process list, the
+ kernel log buffer nor the (kernel) backtrace of running
+ processes contain sensitive information.
+
+ The config option merely sets the default at boot time. Both
+ issuing 'echo X > /sys/module/kdb/parameters/kiosk' or
+ booting with kdb.kiosk=X kernel command line option will override
+ the default settings.
+
+ If unsure, say N.
+
config KDB_KEYBOARD
bool "KGDB_KDB: keyboard as input device"
depends on VT && KGDB_KDB
--
1.9.0

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Daniel Thompson: "[RFC v2 09/10] kdb: Improve usability of help text when running in kiosk mode"
Previous message: Daniel Thompson: "[RFC v2 04/10] kdb: Rename kdb_register_repeat() to kdb_register_flags()"
In reply to: Daniel Thompson: "[RFC v2 04/10] kdb: Rename kdb_register_repeat() to kdb_register_flags()"
Next in thread: Daniel Thompson: "[RFC v2 09/10] kdb: Improve usability of help text when running in kiosk mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]