This is the mail archive of the
libc-alpha@sourceware.org
mailing list for the glibc project.
Re: The LD_AUDIT interface is here to stay?
- From: Rich Felker <dalias at libc dot org>
- To: libc-alpha at sourceware dot org
- Date: Fri, 5 Sep 2014 14:15:58 -0400
- Subject: Re: The LD_AUDIT interface is here to stay?
- Authentication-results: sourceware.org; auth=none
- References: <5409CC98 dot 7000206 at redhat dot com>
On Fri, Sep 05, 2014 at 10:45:44AM -0400, Carlos O'Donell wrote:
> Roland,
>
> Have we ever talked about removing the LD_AUDIT interface?
>
> I heard a rumour from someone that said someone said we
> might remove it.
>
> For what it's worth I really like the LD_AUDIT interface,
> it enables some very cool features like `latrace' and
> others. It's a well tested and understood interface we
> inherited from Solaris.
>
> I think these rumours are false and I told this someone
> that LD_AUDIT is here to stay :-)
While removing it would probably be contrary to the way glibc does
things, I would support serious hardening of it, and possibly
providing a way to completely omit it at compile-time for hardened
systems. It's been a historical source of quite a few vulns that
should never have happened.
Rich