Re: [PATCH v6 1/8] security: Add LSM hook at the point where a task gets a fatal signal

From: Kees Cook
Date: Wed Mar 17 2021 - 21:23:26 EST

Next message: Jack Yu: "RE: [PATCH v3] ASoC: Intel: sof_rt5682: Add ALC1015Q-VB speaker amp support"
Previous message: Jack Yu: "RE: [PATCH v3] ASoC: Intel: sof_rt5682: Add ALC1015Q-VB speaker amp support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Mar 07, 2021 at 12:30:24PM +0100, John Wood wrote:
> Add a security hook that allows a LSM to be notified when a task gets a
> fatal signal. This patch is a previous step on the way to compute the
> task crash period by the "brute" LSM (linux security module to detect
> and mitigate fork brute force attack against vulnerable userspace
> processes).
>
> Signed-off-by: John Wood <john.wood@xxxxxxx>

I continue to really like that this entire thing can be done from an LSM
with just this one extra hook. :)

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

--
Kees Cook

Next message: Jack Yu: "RE: [PATCH v3] ASoC: Intel: sof_rt5682: Add ALC1015Q-VB speaker amp support"
Previous message: Jack Yu: "RE: [PATCH v3] ASoC: Intel: sof_rt5682: Add ALC1015Q-VB speaker amp support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]