Hardened Usercopy Protection Sent In For Linux 4.8
The usercopy protection was sent in today for pulling into the Linux 4.8 kernel.
This user-copy protection support isn't about any form of digital rights management but rather about safeguarding objects being copied to/from user-space. I covered this work in more detail a few days ago in Hardened Usercopy Appears Ready To Be Merged For Linux 4.8.
The work was sent in today with a pull request from Google's Kees Cook who has been working on this code. The pull request can be seen via the kernel mailing list. Kees commented, "This is my next pull request for v4.8, which introduces a kernel self protection of copy_to_user/copy_from_user that has been under review and test on the kernel-hardening list for a while. It has lived for a bit in -next, and appears to be ready [in my opinion]. There will be more improvements in the future, but this is a solid start."
This user-copy protection support isn't about any form of digital rights management but rather about safeguarding objects being copied to/from user-space. I covered this work in more detail a few days ago in Hardened Usercopy Appears Ready To Be Merged For Linux 4.8.
The work was sent in today with a pull request from Google's Kees Cook who has been working on this code. The pull request can be seen via the kernel mailing list. Kees commented, "This is my next pull request for v4.8, which introduces a kernel self protection of copy_to_user/copy_from_user that has been under review and test on the kernel-hardening list for a while. It has lived for a bit in -next, and appears to be ready [in my opinion]. There will be more improvements in the future, but this is a solid start."
1 Comment