Re: [PATCH v6 1/8] security: Add LSM hook at the point where a task gets a fatal signal

From: Kees Cook
Date: Wed Mar 17 2021 - 21:23:26 EST

On Sun, Mar 07, 2021 at 12:30:24PM +0100, John Wood wrote:
> Add a security hook that allows a LSM to be notified when a task gets a
> fatal signal. This patch is a previous step on the way to compute the
> task crash period by the "brute" LSM (linux security module to detect
> and mitigate fork brute force attack against vulnerable userspace
> processes).
> Signed-off-by: John Wood <john.wood@xxxxxxx>

I continue to really like that this entire thing can be done from an LSM
with just this one extra hook. :)

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

Kees Cook