This is the mail archive of the
libc-alpha@sourceware.org
mailing list for the glibc project.
Re: [PATCH] explicit_bzero final
- From: Florian Weimer <fweimer at redhat dot com>
- To: Zack Weinberg <zackw at panix dot com>, libc-alpha at sourceware dot org, joseph at codesourcery dot com, adhemerval dot zanella at linaro dot org, Wilco dot Dijkstra at arm dot com
- Date: Tue, 13 Dec 2016 08:02:01 +0100
- Subject: Re: [PATCH] explicit_bzero final
- Authentication-results: sourceware.org; auth=none
- References: <20161212230622.14045-1-zackw@panix.com>
On 12/13/2016 12:06 AM, Zack Weinberg wrote:
By exposing __glibc_read_memory to external callers, we can write
a fortify wrapper for explicit_bzero in terms of __memset_chk and
__glibc_read_memory.
I think this is quite wrong.
We already know that explicit_bzero will need special treatment from the
compiler, but the above may hide the fortified version.
I need to talk to some GCC people to see if the above is just plain
ugly, or something that can actively interfere with predictable
properties of a fortified call to explicit_bzero.
Thanks,
Florian