| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <alpine.DEB.2.10.1311061444160.26837@vincent-weaver-1.um.maine.edu>
Date: Wed, 6 Nov 2013 14:46:12 -0500 (EST)
From: Vince Weaver <vincent.weaver@...ne.edu>
To: Steven Rostedt <rostedt@...dmis.org>
cc: Linus Torvalds <torvalds@...ux-foundation.org>,
LKML <linux-kernel@...r.kernel.org>,
Ingo Molnar <mingo@...nel.org>,
Peter Zijlstra <peterz@...radead.org>,
Jiri Olsa <jolsa@...hat.com>, Dave Jones <davej@...hat.com>,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
Frederic Weisbecker <fweisbec@...il.com>,
Kees Cook <keescook@...gle.com>
Subject: Re: [GIT PULL][PATCH] perf/ftrace: Fix paranoid level for enabling
function tracer
I've run this patch on top of 3.12 and it seems pretty solid.
I've run my perf_fuzzer for hours (which wasn't possible w/o
quickly crashing on a stock kernel).
Tested-by: Vince Weaver <vincent.weaver@...ne.edu>
On Tue, 5 Nov 2013, Steven Rostedt wrote:
>
> Linus,
>
> Please pull the latest ftrace/urgent tree, which can be found at:
>
>
> git://git.kernel.org/pub/scm/linux/kernel/git/rostedt/linux-trace.git
> ftrace/urgent
>
> Head SHA1: d1356abac98cce8e7765186f8093da1442d74d1d
>
>
> Steven Rostedt (1):
> perf/ftrace: Fix paranoid level for enabling function tracer
>
> ----
> kernel/trace/trace_event_perf.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
> ---------------------------
> commit d1356abac98cce8e7765186f8093da1442d74d1d
> Author: Steven Rostedt <rostedt@...dmis.org>
> Date: Tue Nov 5 12:51:11 2013 -0500
>
> perf/ftrace: Fix paranoid level for enabling function tracer
>
> The current default perf paranoid level is "1" which has
> "perf_paranoid_kernel()" return false, and giving any operations that
> use it, access to normal users. Unfortunately, this includes function
> tracing and normal users should not be allowed to enable function
> tracing by default.
>
> The proper level is defined at "-1" (full perf access), which
> "perf_paranoid_tracepoint_raw()" will only give access to. Use that
> check instead for enabling function tracing.
>
> Reported-by: Dave Jones <davej@...hat.com>
> Reported-by: Vince Weaver <vincent.weaver@...ne.edu>
> Cc: Peter Zijlstra <peterz@...radead.org>
> Cc: Ingo Molnar <mingo@...nel.org>
> Cc: Jiri Olsa <jolsa@...hat.com>
> Cc: Frederic Weisbecker <fweisbec@...il.com>
> Cc: stable@...r.kernel.org # 3.4+
> CVE: CVE-2013-2930
> Fixes: ced39002f5ea ("ftrace, perf: Add support to use function tracepoint in perf")
> Signed-off-by: Steven Rostedt <rostedt@...dmis.org>
>
> diff --git a/kernel/trace/trace_event_perf.c b/kernel/trace/trace_event_perf.c
> index 80c36bc..78e27e3 100644
> --- a/kernel/trace/trace_event_perf.c
> +++ b/kernel/trace/trace_event_perf.c
> @@ -26,7 +26,7 @@ static int perf_trace_event_perm(struct ftrace_event_call *tp_event,
> {
> /* The ftrace function trace is allowed only for root. */
> if (ftrace_event_is_function(tp_event) &&
> - perf_paranoid_kernel() && !capable(CAP_SYS_ADMIN))
> + perf_paranoid_tracepoint_raw() && !capable(CAP_SYS_ADMIN))
> return -EPERM;
>
> /* No tracing, just counting, so no obvious leak */
>
Vince Weaver
vincent.weaver@...ne.edu
http://www.eece.maine.edu/~vweaver/
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists