Re: MAP_FIXED for ELF mappings

From: Linus Torvalds
Date: Wed Oct 04 2017 - 13:15:37 EST

Next message: Greg KH: "Re: [kernel-hardening] Re: [PATCH 2/3] Makefile: Move stackprotector availability out of Kconfig"
Previous message: Srishti Sharma: "[PATCH v2] Staging: rtl8188eu: core: rtw_ap: Use list_for_each_entry_safe"
In reply to: Michal Hocko: "Re: MAP_FIXED for ELF mappings"
Next in thread: Michal Hocko: "Re: MAP_FIXED for ELF mappings"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Oct 4, 2017 at 10:12 AM, Michal Hocko <mhocko@xxxxxxxxxx> wrote:
>
> Yes, but we already have a new stack mapped and that was the point of
> the referenced CVE where the binary segments got mapped over the stack
> AFAIU.

Well, if you control the binary to the point where you just make the
ELF section map on top of the stack, what's the problem?

I mean, it's not a security issue. You could just have written the
code to do mmap() instead.

So I think this is a "crazy users can do crazy things, we're not
arbiters of taste" thing.

Linus

Next message: Greg KH: "Re: [kernel-hardening] Re: [PATCH 2/3] Makefile: Move stackprotector availability out of Kconfig"
Previous message: Srishti Sharma: "[PATCH v2] Staging: rtl8188eu: core: rtw_ap: Use list_for_each_entry_safe"
In reply to: Michal Hocko: "Re: MAP_FIXED for ELF mappings"
Next in thread: Michal Hocko: "Re: MAP_FIXED for ELF mappings"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]