Announcement

Collapse
No announcement yet.

Unprivileged eBPF Support In The Works For The Linux Kernel

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Unprivileged eBPF Support In The Works For The Linux Kernel

    Phoronix: Unprivileged eBPF Support In The Works For The Linux Kernel

    In the past year or so there's been a lot to talk about when it comes to eBPF in the Linux kernel as an in-kernel virtual machine. The latest functionality being worked on is supporting eBPF for unprivileged users...

    Unprivileged eBPF Support In The Works For The Linux Kernel - Phoronix
    http://www.phoronix.com/scan.php?page=news_item&px=Non-Root-eBPF-Patches
    Phoronix, Linux Hardware Reviews, Linux hardware benchmarks, Linux server benchmarks, Linux benchmarking, Desktop Linux, Linux performance, Open Source graphics, Linux How To, Ubuntu benchmarks, Ubuntu hardware, Phoronix Test Suite
    Tags: None
  • #2
    IMHO its a very questionable idea to allow unprivileged user to mess with kernel on such level. Even via VM. Sounds like a plan for multiple vulnerability vectors and ways to try to DoS system where you got unprivileged access, trying to bypass scheduling limits, etc.

    Comment

    • #3
      Unprivileged eBFP: What could possible go wrong.
      ... Hopefully this feature will come with a huge red "disable" button.

      - Gilboa
      oVirt-HV1: Intel S2600C0, 2xE5-2658V2, 128GB, 8x2TB, 4x480GB SSD, GTX1080 (to-VM), Dell U3219Q, U2415, U2412M.
      oVirt-HV2: Intel S2400GP2, 2xE5-2448L, 120GB, 8x2TB, 4x480GB SSD, GTX730 (to-VM).
      oVirt-HV3: Gigabyte B85M-HD3, E3-1245V3, 32GB, 4x1TB, 2x480GB SSD, GTX980 (to-VM).
      Devel-2: Asus H110M-K, i5-6500, 16GB, 3x1TB + 128GB-SSD, F33.

      Comment

      Previous template Next
      Working...
      X