Re: [PATCH] x86-64, vsyscalls: Rename UNSAFE_VSYSCALLS toCOMPAT_VSYSCALLS

From: Ingo Molnar
Date: Thu Jun 09 2011 - 03:02:53 EST

Next message: Weiping Pan: "[PATCH v4 net-next 0/5] bonding:use latest lacp_rate and ad_select,"
Previous message: Axel Lin: "[linux-next] drivers/gpio/gpio-nomadik.c build error"
In reply to: pageexec: "Re: [PATCH] x86-64, vsyscalls: Rename UNSAFE_VSYSCALLS to COMPAT_VSYSCALLS"
Next in thread: pageexec: "Re: [PATCH] x86-64, vsyscalls: Rename UNSAFE_VSYSCALLS to COMPAT_VSYSCALLS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* pageexec@xxxxxxxxxxx <pageexec@xxxxxxxxxxx> wrote:

> On 7 Jun 2011 at 12:05, Ingo Molnar wrote:
>
> > * pageexec@xxxxxxxxxxx <pageexec@xxxxxxxxxxx> wrote:
> >
> > > you called this feature "borderline security FUD" but have yet
> > > to prove it.
> >
> > No, i did not claim that this feature is "borderline security
> > FUD", at all.
>
> so can i take it as your concession that the vsyscall feature is
> indeed a security problem and it's being randomized/(re)moved for
> security reasons?

Again, i made two statements:

"That naming is borderline security FUD"
"It's only a security problem if there's a security hole elsewhere."

I stand by those statements and i reject your repeated attempts to
put words in my mouth that i did not say, such as:

> you called this feature "borderline security FUD" [...]

> in that case the naming of this feature is correct and you have no
> reason to call it "borderline security FUD". so make up your mind!
>
> > That the *NAMING* is borderline security FUD. (I already applied
> > the patches before i wrote that mail, see the commit
> > notifications on lkml.)
>
> how can the name be "borderline security FUD" but what the name
> refers to not be that? you see, we name things for a reason, mostly
> because we think the name has something to do with the thing it
> names, duh?

It's borderline security FUD because it suggests that keeping the
vsyscall around is in itself a security hole. As i outlined whether
there's *another* bug that *can be exploited* is highly dependent on
the usecase - while the Kconfig name made no such distinction. (For
example a device maker might choose to keep the option enabled in
some embedded usecase, those are pretty limited environments that
have few vectors of attack.)

Anyway, repeating and explaining my arguments a dozen times did not
make any difference to you, and there's a point where i have to stop
wasting time on a person, so i've started filtering out your mails.
If you want to send me any patches then please send it to any of my
co-maintainers who will be able to review them.

Thanks,

Ingo
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Weiping Pan: "[PATCH v4 net-next 0/5] bonding:use latest lacp_rate and ad_select,"
Previous message: Axel Lin: "[linux-next] drivers/gpio/gpio-nomadik.c build error"
In reply to: pageexec: "Re: [PATCH] x86-64, vsyscalls: Rename UNSAFE_VSYSCALLS to COMPAT_VSYSCALLS"
Next in thread: pageexec: "Re: [PATCH] x86-64, vsyscalls: Rename UNSAFE_VSYSCALLS to COMPAT_VSYSCALLS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]