lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 8 Jan 2024 18:14:17 +0000
From: Dimitri John Ledkov <dimitri.ledkov@...onical.com>
To: "Russell King (Oracle)" <linux@...linux.org.uk>
Cc: linux-kernel@...r.kernel.org
Subject: Re: [BUG] SHA-3 causes kmod 28 to segfault

Hi,

On Mon, 8 Jan 2024 at 16:38, Russell King (Oracle)
<linux@...linux.org.uk> wrote:
>
> Hi,
>
> When building 6.7 under Debian Oldstable with kmod 28, the installation
> of modules fails during depmod with a SEGV.
>

What is your kernel configuration, and I hope you make config choices
compatible with your target host OS.

> Running under gdb:
>
> Program received signal SIGSEGV, Segmentation fault.
> __strlen_sse2 () at ../sysdeps/x86_64/multiarch/strlen-vec.S:133
>
> I have no further information as I can't remember how to get the debug
> info for packages under Debian - and even if I could, it's probably a
> bug in the kmod package that Debian will have absolutely no interest in
> fixing (based on previous experience reporting bugs to Debian.)

For latest kernel and latest kernel features support in kmod, latest
kmod is required. I.e. patched with
https://github.com/kmod-project/kmod/commit/510c8b7f7455c6613dd1706e5e41ec7b09cf6703

Or ensure that you use a compatible kernel configuration by for
example using SHA256 for kernel module signing.

SHA3 is added as a future alternative to the currently recommended
SHA2 based hashes, as it seems not great to only have a single family
of hashes supported out of the box that are still deemed to be secure.

-- 
Dimitri

Sent from Ubuntu Pro
https://ubuntu.com/pro

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ