Re: [PATCH] pktgen: Remove a dangerous debug print.

From: David Miller
Date: Wed Oct 27 2010 - 15:21:23 EST

Next message: Alan Cox: "Re: [PATCH] drivers/char/hvc_console.c: reduce max idle timeout"
Previous message: Mike Anderson: "Re: [ANNOUNCE] Status of unlocked_qcmds=1 operation for .37"
In reply to: Nelson Elhage: "[PATCH] pktgen: Remove a dangerous debug print."
Next in thread: Nelson Elhage: "Re: [PATCH] pktgen: Remove a dangerous debug print."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Nelson Elhage <nelhage@xxxxxxxxxxx>
Date: Wed, 27 Oct 2010 15:13:08 -0400

> We were allocating an arbitrarily-large buffer on the stack, which would allow a
> buggy or malicious userspace program to overflow the kernel stack.
>
> Since the debug printk() was just printing exactly the text passed from
> userspace, it's probably just as easy for anyone who might use it to augment (or
> just strace(1)) the program writing to the pktgen file, so let's just not bother
> trying to print the whole buffer.
>
> Signed-off-by: Nelson Elhage <nelhage@xxxxxxxxxxx>

Only root can write to the pktgen control file.

Also, the debug feature really is used by people's pktgen scripts, you
can't just turn it off.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: [PATCH] drivers/char/hvc_console.c: reduce max idle timeout"
Previous message: Mike Anderson: "Re: [ANNOUNCE] Status of unlocked_qcmds=1 operation for .37"
In reply to: Nelson Elhage: "[PATCH] pktgen: Remove a dangerous debug print."
Next in thread: Nelson Elhage: "Re: [PATCH] pktgen: Remove a dangerous debug print."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]