| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 06 Jun 2011 12:39:36 +0200 From: pageexec@...email.hu To: Linus Torvalds <torvalds@...ux-foundation.org>, Andi Kleen <andi@...stfloor.org> CC: Andy Lutomirski <luto@....edu>, Ingo Molnar <mingo@...e.hu>, x86@...nel.org, Thomas Gleixner <tglx@...utronix.de>, linux-kernel@...r.kernel.org, Jesper Juhl <jj@...osbits.net>, Borislav Petkov <bp@...en8.de>, Andrew Morton <akpm@...ux-foundation.org>, Arjan van de Ven <arjan@...radead.org>, Jan Beulich <JBeulich@...ell.com>, richard -rw- weinberger <richard.weinberger@...il.com>, Mikael Pettersson <mikpe@...uu.se>, Andi Kleen <andi@...stfloor.org>, Brian Gerst <brgerst@...il.com>, Louis Rilling <Louis.Rilling@...labs.com>, Valdis.Kletnieks@...edu Subject: Re: [PATCH v5 9/9] x86-64: Add CONFIG_UNSAFE_VSYSCALLS to feature-removal-schedule On 6 Jun 2011 at 11:31, Andi Kleen wrote: > On Mon, Jun 06, 2011 at 05:46:41PM +0900, Linus Torvalds wrote: > > On Mon, Jun 6, 2011 at 2:50 AM, Andy Lutomirski <luto@....edu> wrote: > > > CONFIG_UNSAFE_VSYSCALLS was added in the previous patch as a > > > temporary hack to avoid penalizing users who don't build glibc from > > > git. [didn't get your mail directly (yet?), so i'm replying here] > > I really hate that name. > > > > Do you have *any* reason to call this "unsafe"? any userland executable code at a universally (read: across any and all 2.6+ linux boxes) fixed address is not secure (no really, it's worse, it's simply insane design, there's a reason the vdso got randomized eventually), it's the prime vehicle used by both reliable userland and kernel exploits who need to execute syscalls and/or pop the stack until something useful is reached, etc. not to mention the generic snippets of both code and data (marketing word: ROP) that one may find in there. > > Seriously. The whole patch series just seems annoying. what is annoying is your covering up of security fixes on grounds that you don't want to help script kiddies (a bullshit argument as it were) but at the same time question proactive security measures (one can debate the implementation, see my other mail) that would *actually* prevent the same kiddies from writing textbook exploits. but hey, spouting security to journalists works so much better for marketing, doesn't it. > and assumes everyone is using glibc which is just wrong. the libc is irrelevant, they can all be fixed up to use the vdso entry points if they haven't been doing it already. already deployed systems will simply continue to use their flawed kernel and libc, they're not affected. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists