lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-Id: <2CBA18C8-51A4-443C-81D1-8D43B0F6AA76@flyingcircus.io>
Date: Mon, 9 Oct 2023 17:46:28 +0200
From: Christian Theune <ct@...ingcircus.io>
To: Pedro Tammela <pctammela@...atatu.com>
Cc: Jakub Kicinski <kuba@...nel.org>,
 markovicbudimir@...il.com,
 stable@...r.kernel.org,
 netdev@...r.kernel.org,
 Linux regressions mailing list <regressions@...ts.linux.dev>,
 davem@...emloft.net,
 edumazet@...gle.com,
 pabeni@...hat.com,
 Jamal Hadi Salim <jhs@...atatu.com>
Subject: Re: [REGRESSION] Userland interface breaks due to hard HFSC_FSC
 requirement

Hi,

> On 9. Oct 2023, at 17:31, Pedro Tammela <pctammela@...atatu.com> wrote:
> 
> We had a UAF with a very straight forward way to trigger it.
> Setting 'rt' as a parent is incorrect and the man page is explicit about it as it doesn't make sense 'qdisc wise'. Being able to set it has always been wrong unfortunately...

Well - this is a complex thing and even though I took care when setting it up I did not find this in the manpages sufficiently highlighted and built such a system: this has been running for more than a year, it did what I wanted AFAICT and upgrading a micro version broke it catastrophically.

The argument that this never should have been built, feels a bit like “this has been written for 50 years in the basement of the office for planetary destruction on Alpha Centauri and earthlings had more than enough time to come and complain” … ;)
 
Hugs,
Christian

-- 
Christian Theune · ct@...ingcircus.io · +49 345 219401 0
Flying Circus Internet Operations GmbH · https://flyingcircus.io
Leipziger Str. 70/71 · 06108 Halle (Saale) · Deutschland
HR Stendal HRB 21169 · Geschäftsführer: Christian Theune, Christian Zagrodnick


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ