Announcement

Collapse
No announcement yet.

New Attempt Pursued At Using eBPF Within Linux's HID Subsystem

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    New Attempt Pursued At Using eBPF Within Linux's HID Subsystem

    Phoronix: New Attempt Pursued At Using eBPF Within Linux's HID Subsystem

    Back in February was the interesting work laid out by Red Hat engineers for their looking at using eBPF within the kernel's HID subsystem. A new patch series attempting this innovative use of the in-kernel JIT virtual machine has been published...

    New Attempt Pursued At Using eBPF Within Linux's HID Subsystem - Phoronix
    https://www.phoronix.com/scan.php?page=news_item&px=HID-eBPF-New-Attempt
    Phoronix, Linux Hardware Reviews, Linux hardware benchmarks, Linux server benchmarks, Linux benchmarking, Desktop Linux, Linux performance, Open Source graphics, Linux How To, Ubuntu benchmarks, Ubuntu hardware, Phoronix Test Suite
    Tags: None
    • Likes 1
  • #2
    loaded at boot time
    Just at boot time and not when the system is running?
    • Likes 1

    Comment

    • #3
      eBPF keylogging should be fun
      • Likes 3

      Comment

      • #4
        Originally posted by S.Pam View Post
        eBPF keylogging should be fun
        As if something stops you from keylogging straight out of evdev right now if you have the appropriate privileges?
        • Likes 8

        Comment

        • #5
          Originally posted by intelfx View Post

          As if something stops you from keylogging straight out of evdev right now if you have the appropriate privileges?
          But is it not much more fun when you can blame New Stuff?
          • Likes 4

          Comment

          • #6
            Originally posted by S.Pam View Post
            eBPF keylogging should be fun
            X11 keylogger
            https://gist.github.com/robertklep/5124355
            X11 keylogger. GitHub Gist: instantly share code, notes, and snippets.


            Here, an X11 keylogger. You don't even need root (this was not even 5 minutes of web searching, although I haven't tested if it works across multiple users).
            • Likes 3

            Comment

            • #7
              Originally posted by intelfx View Post

              As if something stops you from keylogging straight out of evdev right now if you have the appropriate privileges?
              Excep that with eBPF keylogging you can log every event, even those not registered by evdev (like non-HID-compliant data (e.g. macro keys in gaming keyboards)).

              Comment

              • #8
                Originally posted by tildearrow View Post

                Excep that with eBPF keylogging you can log every event, even those not registered by evdev (like non-HID-compliant data (e.g. macro keys in gaming keyboards)).
                Doesn't matter. I understood the OP's comment as a sarcastic remark about a (purported) security hole created by this feature. My response was meant to show that Linux already has very similar mechanisms in terms of security impact, and hence the negativity was misplaced. And the subtler takeaway is that neither of those features actually is a security impact, because you need to have root privileges to use them.
                • Likes 2

                Comment

                • #9
                  Originally posted by tildearrow View Post

                  Excep that with eBPF keylogging you can log every event, even those not registered by evdev (like non-HID-compliant data (e.g. macro keys in gaming keyboards)).
                  Because macro keys are a concern if regular keys are being logged? Come on

                  Comment

                  Previous template Next
                  Working...
                  X