Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the... | netdev

(off-list ancestor, not in this archive)
[PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Matthew Garrett <hidden> · 2019-03-25
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Stephen Hemminger <stephen@networkplumber.org> · 2019-03-25
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Stephen Hemminger <stephen@networkplumber.org> · 2019-03-25
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Daniel Borkmann <daniel@iogearbox.net> · 2019-03-26
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Jordan Glover <hidden> · 2019-03-26
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Andy Lutomirski <luto@kernel.org> · 2019-03-26
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · James Morris <jmorris@namei.org> · 2019-03-26
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Andy Lutomirski <luto@kernel.org> · 2019-03-26
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · James Morris <jmorris@namei.org> · 2019-03-28
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Matthew Garrett <hidden> · 2019-03-28
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · James Morris <jmorris@namei.org> · 2019-03-28
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Matthew Garrett <hidden> · 2019-03-28
Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down · Matthew Garrett <hidden> · 2019-03-26

Re: [PATCH 23/27] bpf: Restrict kernel image access functions when the kernel is locked down

From: Stephen Hemminger <stephen@networkplumber.org>
Date: 2019-03-25 23:42:28
Also in: linux-security-module, lkml

On Mon, 25 Mar 2019 15:09:50 -0700
Matthew Garrett [off-list ref] wrote:

From: David Howells <dhowells@redhat.com>

There are some bpf functions can be used to read kernel memory:
bpf_probe_read, bpf_probe_write_user and bpf_trace_printk.  These allow
private keys in kernel memory (e.g. the hibernation image signing key) to
be read by an eBPF program and kernel memory to be altered without
restriction.

Completely prohibit the use of BPF when the kernel is locked down.

Suggested-by: Alexei Starovoitov <redacted>
Signed-off-by: David Howells <dhowells@redhat.com>
cc: netdev@vger.kernel.org
cc: Chun-Yi Lee <jlee@suse.com>
cc: Alexei Starovoitov <redacted>
Cc: Daniel Borkmann <daniel@iogearbox.net>
Signed-off-by: Matthew Garrett <redacted>

Wouldn't this mean that Seccomp won't work in locked down mode?

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help