Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)

From: Peter Zijlstra
Date: Wed Sep 22 2021 - 15:58:45 EST

Next message: Linus Walleij: "[PATCH 1/3 v2] clocksource/drivers/fttmr010: Be stricter on IRQs"
Previous message: Yang Shi: "Re: [v2 PATCH 3/3] mm: hwpoison: dump page for unhandlable page"
In reply to: Steven Rostedt: "Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)"
Next in thread: Peter Collingbourne: "Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Sep 22, 2021 at 03:22:50PM -0400, Steven Rostedt wrote:
> On Wed, 22 Sep 2021 19:46:47 +0200
> David Hildenbrand <david@xxxxxxxxxx> wrote:
>
> > > All signals except SIGKILL and SIGSTOP are masked for the interval
> > > between the prctl() and the next syscall in order to prevent handlers
> > > for intervening asynchronous signals from issuing syscalls that may
> > > cause uaccesses from the wrong syscall to be logged.
> >
> > Stupid question: can this be exploited from user space to effectively
> > disable SIGKILL for a long time ... and do we care?
>
> I first misread it too, but then caught my mistake reading it a second
> time. It says "except SIGKILL". So no, it does not disable SIGKILL.

Disabling SIGINT might already be a giant nuisance. Letting through
SIGSTOP but not SIGCONT seems awkward. Blocking SIGTRAP seems like a bad
idea too. Blocking SIGBUS as delivered by #MC will be hillarious.

Next message: Linus Walleij: "[PATCH 1/3 v2] clocksource/drivers/fttmr010: Be stricter on IRQs"
Previous message: Yang Shi: "Re: [v2 PATCH 3/3] mm: hwpoison: dump page for unhandlable page"
In reply to: Steven Rostedt: "Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)"
Next in thread: Peter Collingbourne: "Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]