From owner-freebsd-security@FreeBSD.ORG Tue Dec 20 00:44:14 2011 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3769B106564A for ; Tue, 20 Dec 2011 00:44:14 +0000 (UTC) (envelope-from peterjeremy@acm.org) Received: from fallbackmx08.syd.optusnet.com.au (fallbackmx08.syd.optusnet.com.au [211.29.132.10]) by mx1.freebsd.org (Postfix) with ESMTP id BAD828FC0C for ; Tue, 20 Dec 2011 00:44:13 +0000 (UTC) Received: from mail15.syd.optusnet.com.au (mail15.syd.optusnet.com.au [211.29.132.196]) by fallbackmx08.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id pBJMaYdt019691 for ; Tue, 20 Dec 2011 09:36:34 +1100 Received: from server.vk2pj.dyndns.org (c220-239-116-103.belrs4.nsw.optusnet.com.au [220.239.116.103]) by mail15.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id pBJMaUXt006083 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 20 Dec 2011 09:36:31 +1100 X-Bogosity: Ham, spamicity=0.000000 Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by server.vk2pj.dyndns.org (8.14.5/8.14.4) with ESMTP id pBJMaS8C002453; Tue, 20 Dec 2011 09:36:28 +1100 (EST) (envelope-from peter@server.vk2pj.dyndns.org) Received: (from peter@localhost) by server.vk2pj.dyndns.org (8.14.5/8.14.4/Submit) id pBJMaScn002452; Tue, 20 Dec 2011 09:36:28 +1100 (EST) (envelope-from peter) Date: Tue, 20 Dec 2011 09:36:28 +1100 From: Peter Jeremy To: Kostik Belousov Message-ID: <20111219223627.GA2391@server.vk2pj.dyndns.org> References: <4EEF9375.1010203@sentex.net> <20111219200104.GK50300@deviant.kiev.zoral.com.ua> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="ibTvN161/egqYuK8" Content-Disposition: inline In-Reply-To: <20111219200104.GK50300@deviant.kiev.zoral.com.ua> X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.21 (2010-09-15) Cc: "freebsd-security@freebsd.org" Subject: Re: logging _rtld errors X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Dec 2011 00:44:14 -0000 --ibTvN161/egqYuK8 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 2011-Dec-19 22:01:04 +0200, Kostik Belousov wrote: >On Mon, Dec 19, 2011 at 11:54:46AM -0800, Xin LI wrote: >> It doesn't seem to me that this proposed change would do something >> with security? rtld is a fairly critical part of FreeBSD infrastructure and there have been several instances where rtld changes have resulted in security vulnerabilities. >I also think that UTRACE part is not bad, but will object against the >LD_PRINT_ERROR part. Could you please explain your objections to the LD_PRINT_ERROR part as I don't see an immediate problem with them. > FWIW, it should use rtld_printf() instead of printf(), >but this is moot point. Accepted. On 2011-Dec-19 21:02:49 +0100, Cl=E9ment Lecigne wrote: >Dont know but the ld_printerror !=3D '\0' in the patch should be >*ld_printerror !=3D '\0', no? Oops, my mistake. Yes, there is a missing '*'. --=20 Peter Jeremy --ibTvN161/egqYuK8 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iEYEARECAAYFAk7vvGsACgkQ/opHv/APuIdG6wCdGygpY20erwvO4y2hSU4r2kTY lQYAn20Es5yqn6DFeX+ShnRbFn4qXwdn =HgJA -----END PGP SIGNATURE----- --ibTvN161/egqYuK8--