Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Configurable targeting strategies #9

Open
woodruffw opened this issue Jun 6, 2019 · 0 comments
Open

Configurable targeting strategies #9

woodruffw opened this issue Jun 6, 2019 · 0 comments
Assignees
@hmwildermuth
Labels
enhancement New feature or request kernel-independence Making KRF work on non-Linux kernels

Comments

@woodruffw
Copy link
Member

woodruffw commented Jun 6, 2019
edited

Right now, KRF can only target a process based on its personality(2) mask. This works really well, but we should support other techniques.

Candidate techniques (not exhaustive):

  • PID (or list of PIDs)
  • GID (or list of GIDs)
    • A very early version of KRF did this, and it worked fine. We should re-add it.
  • Processes that have a given file/file-like object open

Since we're operating in user context during a syscall, we should be able to target on anything present in task_struct. There's probably additional context we can safely test.

Doing this will also give us a nice interface for writing a kernel-independent targeting system, which will help with #8.
@woodruffw woodruffw added enhancement New feature or request kernel-independence Making KRF work on non-Linux kernels labels Jun 6, 2019
@woodruffw woodruffw mentioned this issue Jun 6, 2019
Closed
@hmwildermuth hmwildermuth mentioned this issue Jun 7, 2019
Merged
@hmwildermuth hmwildermuth mentioned this issue Jul 16, 2019
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hmwildermuth hmwildermuth

Labels
enhancement New feature or request kernel-independence Making KRF work on non-Linux kernels
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@woodruffw @hmwildermuth