This is the mail archive of the
mailing list for the glibc project.
Re: [PATCH] rtld: Reject overly long LD_AUDIT path elements
On 06/26/2017 01:39 PM, Andreas Schwab wrote:
> On Jun 26 2017, Florian Weimer <firstname.lastname@example.org> wrote:
>> On 06/26/2017 01:02 PM, Andreas Schwab wrote:
>>> On Jun 26 2017, Florian Weimer <email@example.com> wrote:
>>>> +/* Process the audit modules in audit_list and audit_list_string. */
>>>> +handle_audit_modules (void)
>>>> + char fname[SECURE_PATH_LIMIT];
>>>> + struct audit_ifaces *last_audit = NULL;
>>>> + if (audit_list_string != NULL)
>>> Why do you need that?
>> Which part? The separate processing for LD_AUDIT and the --audit
>> command line arguments?
The goal is to prevent massaging the heap through LD_AUDIT variable
contents. So it's purely hardening.