| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <4de62bfbf6974f14d0e9d9ae37cc137dbc926a30.1307292171.git.luto@mit.edu> Date: Sun, 5 Jun 2011 13:50:25 -0400 From: Andy Lutomirski <luto@....EDU> To: Ingo Molnar <mingo@...e.hu>, x86@...nel.org Cc: Thomas Gleixner <tglx@...utronix.de>, linux-kernel@...r.kernel.org, Jesper Juhl <jj@...osbits.net>, Borislav Petkov <bp@...en8.de>, Linus Torvalds <torvalds@...ux-foundation.org>, Andrew Morton <akpm@...ux-foundation.org>, Arjan van de Ven <arjan@...radead.org>, Jan Beulich <JBeulich@...ell.com>, richard -rw- weinberger <richard.weinberger@...il.com>, Mikael Pettersson <mikpe@...uu.se>, Andi Kleen <andi@...stfloor.org>, Brian Gerst <brgerst@...il.com>, Louis Rilling <Louis.Rilling@...labs.com>, Valdis.Kletnieks@...edu, pageexec@...email.hu, Andy Lutomirski <luto@....edu> Subject: [PATCH v5 9/9] x86-64: Add CONFIG_UNSAFE_VSYSCALLS to feature-removal-schedule CONFIG_UNSAFE_VSYSCALLS was added in the previous patch as a temporary hack to avoid penalizing users who don't build glibc from git. Signed-off-by: Andy Lutomirski <luto@....edu> --- Documentation/feature-removal-schedule.txt | 9 +++++++++ 1 files changed, 9 insertions(+), 0 deletions(-) diff --git a/Documentation/feature-removal-schedule.txt b/Documentation/feature-removal-schedule.txt index 1a9446b..94b4470 100644 --- a/Documentation/feature-removal-schedule.txt +++ b/Documentation/feature-removal-schedule.txt @@ -600,3 +600,12 @@ Why: Superseded by the UVCIOC_CTRL_QUERY ioctl. Who: Laurent Pinchart <laurent.pinchart@...asonboard.com> ---------------------------- + +What: CONFIG_UNSAFE_VSYSCALLS (x86_64) +When: When glibc 2.14 or newer is ubitquitous. Perhaps mid-2012. +Why: Having user-executable code at a fixed address is a security problem. + Turning off CONFIG_UNSAFE_VSYSCALLS mostly removes the risk but will + make the time() function slower on glibc versions 2.13 and below. +Who: Andy Lutomirski <luto@....edu> + +---------------------------- -- 1.7.5.2 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists