| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 21 Jan 2015 09:56:34 +0000 From: Thomas Graf <tgraf@...g.ch> To: Herbert Xu <herbert@...dor.apana.org.au> Cc: Patrick McHardy <kaber@...sh.net>, davem@...emloft.net, paulmck@...ux.vnet.ibm.com, ying.xue@...driver.com, netdev@...r.kernel.org, netfilter-devel@...r.kernel.org Subject: Re: [PATCH 3/3] netlink: Lock out table resizes while dumping Netlink sockets On 01/21/15 at 08:14pm, Herbert Xu wrote: > On Wed, Jan 21, 2015 at 04:15:55PM +1100, Herbert Xu wrote: > > I failed to address the security aspect of this approach. Obviously > > this can only work if the only entites doing the walk are trusted. > > Which means that the vast majority (if not all) hash table users > > would be excluded, in particular, netlink. > > OK maybe we can get around this. So we will postpone the resize > or rehash when a walk is in place, however, when we hit a hard > limit, i.e., when insert would otherwise fail, then we do the > rehash regardless of any outstanding walks. The walks will just > behave erratically or we could force them to start from scratch > again. Exactly. I think we also need a timer to abort walks because if only a single walker is allowed, an attacker could start a walk and not complete it to block out everybody else. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists