[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <db7ed4a1-c6aa-6b21-ff2e-6c5b09e2fe30@landley.net>
Date: Sat, 4 Nov 2017 20:10:03 -0500
From: Rob Landley <rob@...dley.net>
To: Kees Cook <keescook@...omium.org>,
Linus Torvalds <torvalds@...ux-foundation.org>
Cc: Linux Kernel Mailing List <linux-kernel@...r.kernel.org>,
toybox@...ts.landley.net, enh@...gle.com
Subject: Re: Regression: commit da029c11e6b1 broke toybox xargs.
On 11/03/2017 08:37 PM, Kees Cook wrote:
> We don't. (In fact, arg copying happens before we've even figured out
> which binfmt is involved.) I lifted it to just before the point of no
> return, but moving it before arg copying looks very hard (which
> contributed to why we went with the implementation we did).
>
>> So it's pretty painful to make the limits different for suid and
>> non-suid binaries.
>
> I would agree.
I think I know what to implement for toybox now: xargs should trust
libc's sysconf() to provide the common-case starting limit (subtracting
env space) then implement the fallback pipe-from-child thing to
iteratively try half the argument list when that fails.
Elliott's even cc'd so he can update bionic's sysconf for the new 10 meg
thing from the title commit. :)
Rob
Powered by blists - more mailing lists