svn commit: r318313 - head/libexec/rtld-elf
Simon J. Gerraty
sjg at juniper.net
Tue May 16 00:25:10 UTC 2017
Konstantin Belousov <kostikbel at gmail.com> wrote:
> > Consider a downstream vendor who has support for signed binary
> > executions. If rtld allows a backdoor around exec(2) to run an unsigned
> > binary, that could be a problem for them. It is on them to add support
> > to exec(2) to validate the special case of execing rtld with an
> > argument, or to just disable the feature in rtld from this commit.
>
> Note the undocumented O_VERIFY flag in open(2) from the patch.
> This is very vendor-ish addition to request veriexec (?).
Yep, we make rtld use O_VERIFY so that it will not load/link anything
which is unsigned.
More information about the svn-src-all
mailing list