Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch

* Andrew Morton <[email protected]> wrote:

> Zachary Amsden <[email protected]> wrote:
> >
> > Jakub Jelinek wrote:
> > >
> > > That's known bug in early glibcs short after adding vDSO support.
> > > The vDSO support has been added in May 2003 to CVS glibc (i.e. post glibc
> > > 2.3.2) and the problems have been fixed when they were discovered, in
> > > February 2004:
> > > http://sources.redhat.com/ml/libc-hacker/2004-02/msg00053.html
> > > http://sources.redhat.com/ml/libc-hacker/2004-02/msg00059.html
> > >
> > > I strongly believe we want randomized vDSOs, people are already abusing the
> > > fix mapped vDSO for attacks, and I think the unfortunate 10 months of broken
> > > glibc shouldn't stop that forever.  Anyone using such glibc can still use
> > > vdso=0, or do that just once and upgrade to somewhat more recent glibc.
> > >   
> > 
> > While I'm now inclined to agree with randomization, I think the default 
> > should be off.  You can quite easily "echo 1 > 
> > /proc/sys/kernel/vdso_randomization" in the RC scripts, which allows you 
> > to maintain compatibility for everyone and get randomization turned on 
> > early enough to thwart attacks against any vulnerable daemons.
> > 
> 
> It kinda sucks but yes, that's obviously least-breakage approach.  It 
> does mean that many people won't benefit from (and won't test!) the 
> new feature though.

very much so. Especially for security it's really bad if a feature is 
default-off. I'm quite strongly against such an approach.

> Unless there's some sneaky way of auto-detecting a modern userspace, 
> perhaps (something which mounts /sys?).

i'd rather not overdesign it. And unfortunately there is no good way to 
autodetect it.

> All very sad.

is it really a big problem to add "vdso=0" to the long list of 
requirements you need to run a 2.6 kernel on an old distribution (or to 
disable CONFIG_VDSO)? FC1 wasnt even 2.6-ready, it used a 2.4 kernel!

	Ingo
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

---

• Follow-Ups:
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Andrew Morton <[email protected]>
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Linus Torvalds <[email protected]>

• References:
  • [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Rusty Russell <[email protected]>
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Ingo Molnar <[email protected]>
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Rusty Russell <[email protected]>
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Andrew Morton <[email protected]>
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Jakub Jelinek <[email protected]>
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Zachary Amsden <[email protected]>
  • Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
    • From: Andrew Morton <[email protected]>

• Prev by Date: Re: [PATCH 0/9] namespaces: Introduction
• Next by Date: Re: [patch 5/8] Add SMP support on i386 to reservation framework
• Previous by thread: Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
• Next by thread: Re: [PATCH] Gerd Hoffman's move-vsyscall-into-user-address-range patch
• Index(es):
  • Date
  • Thread

[Index of Archives]     [Kernel Newbies]     [Netfilter]     [Bugtraq]     [Photo]     [Stuff]     [Gimp]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Video 4 Linux]     [Linux for the blind]     [Linux Resources]