This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] Avoid mapping past end of shared object (BZ #18685)

From: "Carlos O'Donell" <carlos at redhat dot com>
To: Andreas Schwab <schwab at linux-m68k dot org>
Cc: Siddhesh Poyarekar <siddhesh at redhat dot com>, libc-alpha at sourceware dot org, roland at hack dot frob dot com
Date: Thu, 16 Jul 2015 13:17:15 -0400
Subject: Re: [PATCH] Avoid mapping past end of shared object (BZ #18685)
Authentication-results: sourceware.org; auth=none
References: <1437033625-13561-1-git-send-email-siddhesh at redhat dot com> <55A7D4D6 dot 9030407 at redhat dot com> <87oajcjc0b dot fsf at igel dot home>

On 07/16/2015 12:36 PM, Andreas Schwab wrote:
> Perhaps ldd should use a specially compiled ld.so that has a lot of
> extra checks added (so that it can be run on arbitrary objects without
> creating security hazards).

ldd should be a distinct tool that uses libelf, and provides deeper
introspection and options. This way we have a second implementation
of the loader rules in a cleaner and concise form that we can use
to double-check assertions about load order and cycle breakage,
and cross-check ld.so changes.

I have a half-written eu-ldd that I've started. I guess I should
contribute that to elfutils soon.

c.

Follow-Ups:
- Re: [PATCH] Avoid mapping past end of shared object (BZ #18685)
  - From: Mike Frysinger

References:
- [PATCH] Avoid mapping past end of shared object (BZ #18685)
  - From: Siddhesh Poyarekar
- Re: [PATCH] Avoid mapping past end of shared object (BZ #18685)
  - From: Carlos O'Donell
- Re: [PATCH] Avoid mapping past end of shared object (BZ #18685)
  - From: Andreas Schwab

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]