Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)

From: David Hildenbrand
Date: Thu Sep 23 2021 - 04:08:38 EST

Next message: Juergen Gross: "Re: [PATCH 2/3] xen/x86: free_p2m_page: use memblock_free_ptr() to free a virtual pointer"
Previous message: Greg Kroah-Hartman: "Re: [PATCH stable 5.10] ARM: Qualify enabling of swiotlb_init()"
In reply to: Peter Collingbourne: "Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 22.09.21 21:22, Steven Rostedt wrote:

On Wed, 22 Sep 2021 19:46:47 +0200
David Hildenbrand <david@xxxxxxxxxx> wrote:

All signals except SIGKILL and SIGSTOP are masked for the interval
between the prctl() and the next syscall in order to prevent handlers
for intervening asynchronous signals from issuing syscalls that may
cause uaccesses from the wrong syscall to be logged.

Stupid question: can this be exploited from user space to effectively
disable SIGKILL for a long time ... and do we care?

I first misread it too, but then caught my mistake reading it a second
time. It says "except SIGKILL". So no, it does not disable SIGKILL.

Thanks for pointing out the obvious Steve :)

--
Thanks,

David / dhildenb

Next message: Juergen Gross: "Re: [PATCH 2/3] xen/x86: free_p2m_page: use memblock_free_ptr() to free a virtual pointer"
Previous message: Greg Kroah-Hartman: "Re: [PATCH stable 5.10] ARM: Qualify enabling of swiotlb_init()"
In reply to: Peter Collingbourne: "Re: [PATCH] kernel: introduce prctl(PR_LOG_UACCESS)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]