News [LWN.net] [$] Securing BPF LSMs against tampering

News

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,927
Reaction score
94
Credits
-1,257
Since 2020, BPF programs have been able to act as Linux security modules (LSMs). Several projects, including systemd, have been working to use that capability to provide more security to users. Christian Brauner spoke at the 2026 Linux Storage, Filesystem, Memory-Management, and BPF Summit about some of the limitations of using BPF in this way, and the changes he would like to see for systemd's use. In particular, he would like a way to make sure that BPF programs cannot be removed or have their private data tampered with.

Source: https://lwn.net/Articles/1082111/

Aggregated via Linux News
 


Follow Linux.org

Members online


Latest posts

Top