lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Sat, 16 Sep 2006 13:47:30 +0200
From:	Arjan van de Ven <arjan@...radead.org>
To:	"Randy.Dunlap" <rdunlap@...otime.net>
Cc:	linux-kernel@...r.kernel.org, akpm@...l.org,
	mm-commits@...r.kernel.org, rossb@...gle.com, akpm@...gle.com,
	sam@...nborg.org
Subject: Re: + allow-proc-configgz-to-be-built-as-a-module.patch added to
	-mm tree

> > In some ways this is a bit risky, because the .config which is used for
> > compiling kernel/configs.c isn't necessarily the same as the .config which was
> > used to build vmlinux.
> 
> and that's why a module wasn't allowed.
> It's not worth the risk IMO.
Hi,

I agree with Randy here; this does not make sense. Either you're ok with
a small risk that the config doesn't match the kernel (and you
use /boot/config-<version> as put there by make install and by all
distributions) or you want a 100.00% guarantee and use /proc/config.gz.
Making the later unreliable (even if that is a CHOICE a user of it
cannot find this out, in the config.gz he sees the CONFIG option for
this may say =y even if the actual config has it as module!. So users of
this are now in the cold).

One hack we could do is make an md5sum or similar of the config and
stick that somewhere which is built in and always available (proc or
sysfs or something like that); that can be used to validate any config
basically to be "correct matching". In fact we could even make it
(optionally) part of the VERMAGIC to avoid any kind of mismatch at all.


Greetings,
   Arjan van de Ven

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ