[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAAbOSckyxGka1vWTpuYwA8eH=17sJbGMUOuCwHs2gE_FPnXG3A@mail.gmail.com>
Date: Mon, 26 Feb 2024 15:28:49 -0500
From: Mike Frysinger <vapier@...omium.org>
To: Kees Cook <keescook@...omium.org>
Cc: Adrian Ratiu <adrian.ratiu@...labora.com>, jannh@...gle.com,
Doug Anderson <dianders@...omium.org>, linux-security-module@...r.kernel.org,
linux-fsdevel@...r.kernel.org, linux-kernel@...r.kernel.org,
kernel@...labora.com, Guenter Roeck <groeck@...omium.org>, linux-hardening@...r.kernel.org
Subject: Re: [PATCH] proc: allow restricting /proc/pid/mem writes
(lemme try this again as plain text)
On Mon, Feb 26, 2024 at 2:24 PM Kees Cook <keescook@...omium.org> wrote:
> On Mon, Feb 26, 2024 at 09:10:54AM -0800, Doug Anderson wrote:
> > On Wed, Feb 21, 2024 at 1:06 PM Adrian Ratiu <adrian.ratiu@...labora.com> wrote:
> > + if (ptracer_capable(current, mm->user_ns) &&
>
> It really looks like you're trying to do a form of ptrace_may_access(),
> but _without_ the introspection exception?
to be clear, we want the check to be "ptracer is attached, and the
process attempting the write is the ptracer", not "does the writer
pass ptrace access checks". the latter opens up more angles,
including shellcode self-modification, that we don't want. the only
use case we have for writable mem files is for debuggers, and those
should already be attached.
-mike
Powered by blists - more mailing lists