Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down

From: Matthew Garrett
Date: Tue Mar 26 2019 - 16:19:25 EST

Next message: Bjorn Helgaas: "Re: [PATCH RFC v4 08/21] nvme-pci: Handle movable BARs"
Previous message: Joao Moreira: "Re: [PATCH v2 0/8] klp-convert"
In reply to: Matthew Garrett: "Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Next in thread: Matthew Garrett: "[PATCH 24/27] Lock down perf"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Mar 26, 2019 at 11:57 AM James Morris <jmorris@xxxxxxxxx> wrote:
> - Assign an ID to each lockdown point
> - Implement a policy mechanism where each ID is mapped to 0 or 1
> - Allow this policy to be specified statically or dynamically

One of the problems with this approach is what the default behaviour
should be when a new feature is added. If an admin fails to notice
that there's now a new policy element, they run the risk of kernel
integrity being compromised via the new feature even if the rest of
the kernel is locked down.

Next message: Bjorn Helgaas: "Re: [PATCH RFC v4 08/21] nvme-pci: Handle movable BARs"
Previous message: Joao Moreira: "Re: [PATCH v2 0/8] klp-convert"
In reply to: Matthew Garrett: "Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down"
Next in thread: Matthew Garrett: "[PATCH 24/27] Lock down perf"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]