tpe-lkm
tpe-lkm copied to clipboard
cormander
Trusted Path Execution (TPE) Linux Kernel Module
I'm just testing some of the module features and it looks like `tpe.trusted_apps` doesn't work on the 4.20.16-amd64 kernel. ``` # sysctl -a | grep trust tpe.trusted_apps = "/home/morfik/gems/bin/jekyll" tpe.trusted_gid...
Is this something serious? ``` kernel: tpe: loading out-of-tree module taints kernel. kernel: fopskit: fopskit_find_sym_addr() failed with return code -14 for fops_hook { name => selinux_enabled, addr => 0, found...
There is a nice explanation what most of the TPE parameters do in the README file, but I haven't noticed there a parameter called `tpe.lock` . What does it do?...
When I start some docker containers I get the following log: ``` kernel: tpe: Denied untrusted exec of /usr/local/bin/docker-entrypoint.sh (uid:999) by /usr/local/bin/gosu (uid:999), parents: /usr/bin/containerd-shim (uid:0), /usr/bin/containerd (uid:0), /lib/systemd/systemd (uid:0)....
Hi, I'm trying to compile on a 3.16.0-4-amd64 kernel, on an host with Devuan 8 (same kernel and issue on Debian 8). ``` # make make -C /usr/src/linux-headers-3.16.0-4-amd64 M=/root/tpe-lkm modules...
Below return -1 to user-space program: `fopskit_return(fopskit_eperm); //int fopskit_eperm(void) { return -EPERM; }` In user-space run with strace,I saw this: `creat("/tmp/test/create.txt", 0644) = 4294967295` Normally,display should be: `creat("/tmp/test/create.txt", 0644) =...
