BPF and security
BPF and security
Posted Oct 8, 2023 11:03 UTC (Sun) by mpr22 (subscriber, #60784)In reply to: BPF and security by JdGordy
Parent article: BPF and security
A convenient denial of service mechanism is absolutely a security issue.
Posted Oct 10, 2023 13:37 UTC (Tue)
by droundy (subscriber, #4559)
[Link]
I think the crux is the sentence "CAP_BPF is meant to work like CAP_SYS_MODULE, which is the capability required to load a kernel module; that capability effectively gives permission to crash the kernel because malicious (or buggy) modules can do just that."
BPF and security
I'm not sure that "root can crash the kernel" is actually a security issue.