lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <27323.1510308432@warthog.procyon.org.uk>
Date:   Fri, 10 Nov 2017 10:07:12 +0000
From:   David Howells <dhowells@...hat.com>
To:     Alexei Starovoitov <alexei.starovoitov@...il.com>,
        Jiri Kosina <jikos@...nel.org>
Cc:     dhowells@...hat.com, linux-security-module@...r.kernel.org,
        gnomes@...rguk.ukuu.org.uk, linux-efi@...r.kernel.org,
        linux-kernel@...r.kernel.org, jforbes@...hat.com
Subject: Re: [PATCH 26/30] Lock down ftrace

Jiri Kosina <jikos@...nel.org> wrote:

> > This prevents crypto data theft by analysis of execution patterns, and, if
> > in future ftrace also logs the register contents at the time, will prevent
> > data theft by that mechanism also.
> 
> I fail to see how this fits into the secure boot security model, could you 
> please explain?

The idea is to prevent cryptographic data for filesystems and other things
from being read out of the kernel memory as well as to prevent unauthorised
modification of kernel memory.

> Secure boot is about having a constant proof / verification that the code 
> you're running in ring0 can be trusted (IOW is the one that has been 
> signed and verified by the whole boot chain).
> 
> Checking execution patterns doesn't seem to fit at all.

I'll defer this question to Alexei since he suggested I needed to deal with
this too.

David

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ