Re: Build failure for ``no options PTRACE''

To: Kamil Rytarowski <kamil%netbsd.org@localhost>
Subject: Re: Build failure for ``no options PTRACE''
From: Paul Goyette <paul%whooppee.com@localhost>
Date: Sat, 17 Oct 2020 09:53:08 -0700 (PDT)

Kamil wrote:

This, I propose to do the following:

1. Remove the modularization of ptrace. This does not affect the compat
layers that still can and should be in my opinion modular.

2. Either abandon 'no PTRACE' or make it complete ifdefing all the
ptrace-related code from the kernel core.


I'm not commenting on usefulness of having a PTRACE module;  I'll
leave that discussion to others.

However, you cannot implement #2 without also implementing #1.  You
cannot simply ifdef-out the calls to the ptrace code if it is still
possible to load ptrace as a module.

3. If we have security related concerns, add
"security.models.extensions.ptrace".


Of course, the sysctl would/should only exist if the kernel includes
``options PTRACE''


+--------------------+--------------------------+-----------------------+
| Paul Goyette       | PGP Key fingerprint:     | E-mail addresses:     |
| (Retired)          | FA29 0E3B 35AF E8AE 6651 | paul%whooppee.com@localhost     |
| Software Developer | 0786 F758 55DE 53BA 7731 | pgoyette%netbsd.org@localhost   |
+--------------------+--------------------------+-----------------------+

Follow-Ups:
- Re: Build failure for ``no options PTRACE''
  - From: Kamil Rytarowski

References:
- Build failure for ``no options PTRACE''
  - From: Paul Goyette
- Re: Build failure for ``no options PTRACE''
  - From: Christos Zoulas
- Re: Build failure for ``no options PTRACE''
  - From: Kamil Rytarowski

Prev by Date: Re: Build failure for ``no options PTRACE''
Next by Date: Re: Build failure for ``no options PTRACE''
Previous by Thread: Re: Build failure for ``no options PTRACE''
Next by Thread: Re: Build failure for ``no options PTRACE''
Indexes:

Home | Main Index | Thread Index | Old Index