This is the mail archive of the
mailing list for the glibc project.
Re: Design goals of the dynamic loader.
- From: Siddhesh Poyarekar <siddhesh at redhat dot com>
- To: Roland McGrath <roland at hack dot frob dot com>
- Cc: "Carlos O'Donell" <carlos at redhat dot com>, libc-alpha at sourceware dot org
- Date: Sat, 18 Jul 2015 08:34:26 +0530
- Subject: Re: Design goals of the dynamic loader.
- Authentication-results: sourceware.org; auth=none
- References: <1437033625-13561-1-git-send-email-siddhesh at redhat dot com> <55A7D4D6 dot 9030407 at redhat dot com> <20150717032846 dot GA19592 at spoyarek dot pnq dot redhat dot com> <55A87E63 dot 5030506 at redhat dot com> <20150717043706 dot GC19592 at spoyarek dot pnq dot redhat dot com> <55A931B0 dot 1010208 at redhat dot com> <20150718014326 dot GI19592 at spoyarek dot pnq dot redhat dot com> <20150718021516 dot 002BF2C2446 at topped-with-meat dot com> <20150718024952 dot GJ19592 at spoyarek dot pnq dot redhat dot com>
On Sat, Jul 18, 2015 at 08:19:53AM +0530, Siddhesh Poyarekar wrote:
> We have some validations in place already, so it is not clear to me
> what the criteria for selecting them is and at present it seems
> arbitrary. If there is a clear guideline for what kind of sanity
OK, so I took another look and the only validation that seems kinda
related is the one that detects the wrong ELF class. That too is not
specifically a protection against invalid ELF; just not somthing this
linker runs. So I guess it is easy to claim that ld.so assumes that
the ELF is valid. I withdraw my patch if the general idea of allowing
the linker to do arbitrary things or crashing on invalid ELF is