| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 17 Feb 2012 04:07:02 -0800
From: ebiederm@...ssion.com (Eric W. Biederman)
To: Eric Dumazet <eric.dumazet@...il.com>
Cc: Denys Fedoryshchenko <denys@...p.net.lb>, netdev@...r.kernel.org
Subject: Re: sysfs^H^H^H^H^Hsysctl warnings, reserved names
Eric Dumazet <eric.dumazet@...il.com> writes:
> Le vendredi 17 février 2012 à 11:37 +0100, Eric Dumazet a écrit :
>> Le vendredi 17 février 2012 à 12:14 +0200, Denys Fedoryshchenko a
>> écrit :
>> > Hi
>> >
>> > Just did a test:
>> >
>> > ip link set dev eth1 name default
>> >
>> > And got a lot of (expected) sysfs warnings:
>> > [1068625.677143] sysctl table check failed:
>> > /net/ipv4/conf/default/promote_secondaries Sysctl already exists
>> > [1068625.677151] Pid: 18106, comm: ip Not tainted 3.2.4-centaur #1
>> > and etc
>> >
>> > Kernel 3.2.4, but i guess it doesn't matter much.
>> > Maybe such names (as all and default) should be "reserved"?
>> > Or it is ok like that?
>> >
>>
>> You're right, we should forbid this to happen.
>>
>>
>
> Following is a quick hack, I CC Eric because its probaly better to
> address this in sysfs.
Well we are talking about sysctl not sysfs but same difference, I keep
an on eye on them.
I expect renaming a network device to "all" or "default" would be a
problem in any kernel supporting renaming of networking devices.
At the basic level of handling it. sysctl checks for this sometimes
now and as soon as my sysctl tree is merged the checks will become
unconditionally present. In what sense were you thinking it would
be better to address this in the sysctl?
My feel on the situation is that since this is how the network stack
has choosen to use /proc/sys the names "all" and "default" should just
be outlawed unconditionally.
The CONFIG_INET check seems wrong, and CONFIG_SYSCTL seems unnecessary.
I think we should just reserve those names.
As for the rest the sysctl registration that happens during the rename
is failing so if you want to wire up catching that failure in the
networking code we can handle it that way but that seems like a lot
of work for very little benefit. We don't test those failure paths
so if we put in the work to handle the error the code will probably
just bitrot and do something strange by the next time someone tries
to use "default" or "all" as device names.
By contrast outlawing the names as you do in dev_valid_name below is
absolutely trivial, and much less likely to bitrot.
Eric
> diff --git a/net/core/dev.c b/net/core/dev.c
> index 763a0ed..ec68f89 100644
> --- a/net/core/dev.c
> +++ b/net/core/dev.c
> @@ -856,7 +856,11 @@ int dev_valid_name(const char *name)
> return 0;
> if (!strcmp(name, ".") || !strcmp(name, ".."))
> return 0;
> -
> +#if defined(CONFIG_SYSCTL) && defined(CONFIG_INET)
> + /* /proc/sys/net/ipv{4|6}/conf/{default|all} are reserved */
> + if (!strcmp(name, "default") || !strcmp(name, "all"))
> + return 0;
> +#endif
> while (*name) {
> if (*name == '/' || isspace(*name))
> return 0;
>
>
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists