Re: [RFC 0/1] BPF tracing for arm64 using fprobe

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [RFC 0/1] BPF tracing for arm64 using fprobe
From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Date: Mon, 21 Nov 2022 10:39:56 -0500
Cc: Chris Mason <clm@xxxxxxxx>, Mark Rutland <mark.rutland@xxxxxxx>, Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>, Florent Revest <revest@xxxxxxxxxxxx>, bpf <bpf@xxxxxxxxxxxxxxx>, Alexei Starovoitov <ast@xxxxxxxxxx>, Daniel Borkmann <daniel@xxxxxxxxxxxxx>, Andrii Nakryiko <andrii@xxxxxxxxxx>, Brendan Jackman <jackmanb@xxxxxxxxxx>, markowsky@xxxxxxxxxx, Masami Hiramatsu <mhiramat@xxxxxxxxxx>, Xu Kuohai <xukuohai@xxxxxxxxxx>, LKML <linux-kernel@xxxxxxxxxxxxxxx>, Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>, Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>, Christoph Hellwig <hch@xxxxxxxxxxxxx>, Peter Zijlstra <peterz@xxxxxxxxxxxxx>
In-reply-to: <CACYkzJ6n-9rH7hCeFVtFYFQ9+6MOuQ+J6LwR4PJ6zUN7w3zQhA@mail.gmail.com>

On Mon, 21 Nov 2022 16:29:54 +0100
KP Singh <kpsingh@xxxxxxxxxx> wrote:

> I am not sure how they can circumvent security since this needs root /
> root equivalent permissions. Fault injection is actually a very useful
> debugging tool.

On ChromeOS, we even consider root untrusted and lock down pretty
much all privileged activities (like loading modules and such).

As you said. It's a good debugging tool. Not something to allow in
production environments. Or at the very least, allow admins to disable it.

-- Steve

References:
- [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Florent Revest
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Alexei Starovoitov
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Steven Rostedt
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Chris Mason
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Steven Rostedt
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Mark Rutland
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Steven Rostedt
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Chris Mason
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Steven Rostedt
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Chris Mason
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: KP Singh
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: Steven Rostedt
- Re: [RFC 0/1] BPF tracing for arm64 using fprobe
  - From: KP Singh

Prev by Date: Re: [PoC][PATCH] bpf: Call return value check function in the JITed code
Next by Date: Re: [RFC 0/1] BPF tracing for arm64 using fprobe
Previous by thread: Re: [RFC 0/1] BPF tracing for arm64 using fprobe
Next by thread: Re: [RFC 0/1] BPF tracing for arm64 using fprobe
Index(es):
- Date
- Thread

[Index of Archives] [Linux Samsung SoC] [Linux Rockchip SoC] [Linux Actions SoC] [Linux for Synopsys ARC Processors] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux Audio Users] [Yosemite News] [Linux Kernel] [Linux SCSI]