Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "hpa@xxxxxxxxx" <hpa@xxxxxxxxx>, "petr@xxxxxxxxxxx" <petr@xxxxxxxxxxx>
Subject: Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
From: "Edgecombe, Rick P" <rick.p.edgecombe@xxxxxxxxx>
Date: Wed, 14 Feb 2024 18:14:49 +0000
Accept-language: en-US
Cc: "Xu, Pengfei" <pengfei.xu@xxxxxxxxx>, "tglx@xxxxxxxxxxxxx" <tglx@xxxxxxxxxxxxx>, "luto@xxxxxxxxxx" <luto@xxxxxxxxxx>, "kirill.shutemov@xxxxxxxxxxxxxxx" <kirill.shutemov@xxxxxxxxxxxxxxx>, "brgerst@xxxxxxxxx" <brgerst@xxxxxxxxx>, "dwmw@xxxxxxxxxxxx" <dwmw@xxxxxxxxxxxx>, "corbet@xxxxxxx" <corbet@xxxxxxx>, "linux-kernel@xxxxxxxxxxxxxxx" <linux-kernel@xxxxxxxxxxxxxxx>, "Li, Xin3" <xin3.li@xxxxxxxxx>, "roberto.sassu@xxxxxxxxxxxxxxx" <roberto.sassu@xxxxxxxxxxxxxxx>, "petr.tesarik1@xxxxxxxxxxxxxxxxxxx" <petr.tesarik1@xxxxxxxxxxxxxxxxxxx>, "jgg@xxxxxxxx" <jgg@xxxxxxxx>, "x86@xxxxxxxxxx" <x86@xxxxxxxxxx>, "bp@xxxxxxxxx" <bp@xxxxxxxxx>, "peterz@xxxxxxxxxxxxx" <peterz@xxxxxxxxxxxxx>, "rppt@xxxxxxxxxx" <rppt@xxxxxxxxxx>, "arnd@xxxxxxxx" <arnd@xxxxxxxx>, "mhiramat@xxxxxxxxxx" <mhiramat@xxxxxxxxxx>, "oleg@xxxxxxxxxx" <oleg@xxxxxxxxxx>, "keescook@xxxxxxxxxxxx" <keescook@xxxxxxxxxxxx>, "Huang, Kai" <kai.huang@xxxxxxxxx>, "jacob.jun.pan@xxxxxxxxxxxxxxx" <jacob.jun.pan@xxxxxxxxxxxxxxx>, "zegao2021@xxxxxxxxx" <zegao2021@xxxxxxxxx>, "Rodel, Jorg" <jroedel@xxxxxxx>, "mingo@xxxxxxxxxx" <mingo@xxxxxxxxxx>, "jpoimboe@xxxxxxxxxx" <jpoimboe@xxxxxxxxxx>, "Zhang, Tina" <tina.zhang@xxxxxxxxx>, "Hansen, Dave" <dave.hansen@xxxxxxxxx>, "linux-doc@xxxxxxxxxxxxxxx" <linux-doc@xxxxxxxxxxxxxxx>, "akpm@xxxxxxxxxxxxxxxxxxxx" <akpm@xxxxxxxxxxxxxxxxxxxx>, "dave.hansen@xxxxxxxxxxxxxxx" <dave.hansen@xxxxxxxxxxxxxxx>, "petrtesarik@xxxxxxxxxxxxxxx" <petrtesarik@xxxxxxxxxxxxxxx>
In-reply-to: <20240214174143.74a4f10c@meshulam.tesarici.cz>
References: <20240214113516.2307-1-petrtesarik@huaweicloud.com> <c424618c-d6c6-430a-8975-8851a617204e@intel.com> <34B19756-91D3-4DA1-BE76-BD3122C16E95@zytor.com> <20240214174143.74a4f10c@meshulam.tesarici.cz>
User-agent: Evolution 3.44.4-0ubuntu2

On Wed, 2024-02-14 at 17:41 +0100, Petr Tesařík wrote:
> Second, a sandbox can run unmodified kernel code and interact
> directly
> with other parts of the kernel. It's not really possible with this
> initial patch series, but the plan is that sandbox mode can share
> locks
> with the kernel.
> 
> Third, sandbox code can be trusted for operations like parsing keys
> for
> the trusted keychain if the kernel is locked down, i.e. when even a
> process with UID 0 is not on the same trust level as kernel mode.

What use case needs to have the sandbox both protected from the kernel
(trusted operations) and non-privileged (the kernel protected from it
via CPL3)? It seems like opposite things.

Follow-Ups:
- Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
  - From: Petr Tesařík

References:
- [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
  - From: Petr Tesarik
- Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
  - From: Dave Hansen
- Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
  - From: H. Peter Anvin
- Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
  - From: Petr Tesařík

Prev by Date: [PATCH v2] arm64: Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata
Next by Date: Re: [PATCH v2] arm64: Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata
Previous by thread: Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
Next by thread: Re: [PATCH v1 0/8] x86_64 SandBox Mode arch hooks
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Linux FS] [Yosemite Forum] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper] [Linux Resources]