Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing.

[PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> · 2019-02-28
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp> · 2019-03-04
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Stephen Smalley <hidden> · 2019-03-04
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp> · 2019-03-04
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · James Morris <jmorris@namei.org> · 2019-03-05
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp> · 2019-03-11
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · James Morris <jmorris@namei.org> · 2019-03-12
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp> · 2019-03-12
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · James Morris <jmorris@namei.org> · 2019-03-12
RE: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Edwin Zimmerman <hidden> · 2019-03-12
RE: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · James Morris <jmorris@namei.org> · 2019-03-13
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · James Morris <jmorris@namei.org> · 2019-03-12
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp> · 2019-03-12
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · James Morris <jmorris@namei.org> · 2019-03-12
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp> · 2019-03-13
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Paul Moore <paul@paul-moore.com> · 2019-03-13
Re: [PATCH] tomoyo: Add a kernel config option for fuzzing testing. · Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> · 2019-03-25

From: Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp>
Date: 2019-03-12 20:56:48

On 2019/03/13 3:21, James Morris wrote:

On Thu, 28 Feb 2019, Tetsuo Handa wrote:

quoted

syzbot is reporting kernel panic triggered by memory allocation fault
injection before loading TOMOYO's policy [1]. To make the fuzzing tests
useful, we need to assign a profile other than "disabled" (no-op) mode.
Therefore, let's allow syzbot to load TOMOYO's built-in policy for
"learning" mode using a kernel config option. This option must not be
enabled for kernels built for production system, for this option also
disables domain/program checks when modifying policy configuration via
/sys/kernel/security/tomoyo/ interface.

I don't understand the logic here. If the cause of this is no policy 
loaded combined with running out of memory, shouldn't the no-policy issue 
be dealt with earlier?

This patch is for automatically loading minimal policy at boot time
in order to address the no-policy issue. By applying this patch, syzbot
can test TOMOYO module without modifying userspace to load TOMOYO's policy
when /sbin/init starts.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help