Received: by 2002:a05:6358:d09b:b0:dc:cd0c:909e with SMTP id jc27csp4491099rwb; Mon, 21 Nov 2022 08:11:16 -0800 (PST) X-Google-Smtp-Source: AA0mqf5utI9pex3mBNsaZuLc7knAui26NnDZiidhWSyQf+fpk/sKpjYC+VpystrPhEYBjXFC6NwB X-Received: by 2002:a17:906:b250:b0:7b2:86d5:8b14 with SMTP id ce16-20020a170906b25000b007b286d58b14mr16413946ejb.230.1669047075779; Mon, 21 Nov 2022 08:11:15 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1669047075; cv=none; d=google.com; s=arc-20160816; b=MZFKasF+8UYaiNbPcBaLEn8g8UnKeZb8hhi7ZsS5UvLx6aKDHrCdLrmrl/hxh4gcbL ucwEDP4Ec94n29aURfvsXr5xYsK3NaPouLEiMVmlknzIJLYU7m6zIPMZqjimiqD6Ea9v x7Op45Yp4V1EKU+4z2+RRKdjGktB305lLVLBN1CNV5MRC86sHr0jwZGBj8Ktu+AWutM9 OCJbcEM3qn4JXi4//w/HOmpde4BsofcM9h6Qg/+F3tGL4QGpnTqGPNQFbZ5EQvmekLB8 3l0W3oGwuIJXdSBqKAgGd21eqAxNkhAuJpTCXiL7pfO2uwrE2xFcTKf3pV4ClBsVdVW0 1VJg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:subject:cc:to:from:date; bh=zh8rCRNeu/yv3T0+BPDRrtCuHYHATiQXZoUwzktsYlY=; b=TU2lbalgFvuB/wpNhTcSYrB4fqb2aOnfk8rcTjC/Z46Cf2p2jGdEJ0J5KYWCZ2QQu3 BHDlz38QncQ9ZoPTA4oW8iWRQzL5C9oLW9jCLKPcYp9fY4hOcsQ9qvQiwgghFlp+VlGL zIRBCIRdQu0VtapGM34ZoxvNCzwzvcYCmpwzS6qaW7wM+613LFTn3d0mEgJls93ltrT8 ziFC+5lIBwB9csCX/qlw7qHmOAMVkESqqZjNOwt2znr89SyuUpknHzK/A1DjTNoIUvmu Z8JRu1isMdAd91RIWMFeqElheVpuyh2g/KTu6JLz1/we3CpR3pLCdisZZ8CIfSAI3aSh WteA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id en17-20020a056402529100b0045bfaaab6d1si8973125edb.48.2022.11.21.08.10.38; Mon, 21 Nov 2022 08:11:15 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230497AbiKUPkF (ORCPT + 91 others); Mon, 21 Nov 2022 10:40:05 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42616 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229626AbiKUPkD (ORCPT ); Mon, 21 Nov 2022 10:40:03 -0500 Received: from ams.source.kernel.org (ams.source.kernel.org [IPv6:2604:1380:4601:e00::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 3B0AA41995; Mon, 21 Nov 2022 07:40:02 -0800 (PST) Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ams.source.kernel.org (Postfix) with ESMTPS id E1C90B810A8; Mon, 21 Nov 2022 15:40:00 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id B8F37C433C1; Mon, 21 Nov 2022 15:39:57 +0000 (UTC) Date: Mon, 21 Nov 2022 10:39:56 -0500 From: Steven Rostedt To: KP Singh Cc: Chris Mason , Mark Rutland , Alexei Starovoitov , Florent Revest , bpf , Alexei Starovoitov , Daniel Borkmann , Andrii Nakryiko , Brendan Jackman , markowsky@google.com, Masami Hiramatsu , Xu Kuohai , LKML , Greg Kroah-Hartman , Linus Torvalds , Christoph Hellwig , Peter Zijlstra Subject: Re: [RFC 0/1] BPF tracing for arm64 using fprobe Message-ID: <20221121103956.04abbe9b@gandalf.local.home> In-Reply-To: References: <20221108220651.24492-1-revest@chromium.org> <20221117121617.4e1529d3@gandalf.local.home> <20221117174030.0170cd36@gandalf.local.home> <20221118114519.2711d890@gandalf.local.home> <43d5d1f5-c01d-c0db-b421-386331c2b8c1@meta.com> <20221118130608.5ba89bd8@gandalf.local.home> <2ab2b854-723a-5f15-8c18-0b5730d1b535@meta.com> <20221121101537.674f5aca@gandalf.local.home> X-Mailer: Claws Mail 3.17.8 (GTK+ 2.24.33; x86_64-pc-linux-gnu) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-6.7 required=5.0 tests=BAYES_00, HEADER_FROM_DIFFERENT_DOMAINS,RCVD_IN_DNSWL_HI,SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, 21 Nov 2022 16:29:54 +0100 KP Singh wrote: > I am not sure how they can circumvent security since this needs root / > root equivalent permissions. Fault injection is actually a very useful > debugging tool. On ChromeOS, we even consider root untrusted and lock down pretty much all privileged activities (like loading modules and such). As you said. It's a good debugging tool. Not something to allow in production environments. Or at the very least, allow admins to disable it. -- Steve