This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] explicit_bzero final

From: Florian Weimer <fweimer at redhat dot com>
To: Zack Weinberg <zackw at panix dot com>, libc-alpha at sourceware dot org, joseph at codesourcery dot com, adhemerval dot zanella at linaro dot org, Wilco dot Dijkstra at arm dot com
Date: Tue, 13 Dec 2016 08:02:01 +0100
Subject: Re: [PATCH] explicit_bzero final
Authentication-results: sourceware.org; auth=none
References: <20161212230622.14045-1-zackw@panix.com>

On 12/13/2016 12:06 AM, Zack Weinberg wrote:

By exposing __glibc_read_memory to external callers, we can write
a fortify wrapper for explicit_bzero in terms of __memset_chk and
__glibc_read_memory.


I think this is quite wrong.

We already know that explicit_bzero will need special treatment from thecompiler, but the above may hide the fortified version.

I need to talk to some GCC people to see if the above is just plainugly, or something that can actively interfere with predictableproperties of a fortified call to explicit_bzero.


Thanks,
Florian

Follow-Ups:
- Re: [PATCH] explicit_bzero final
  - From: Zack Weinberg

References:
- [PATCH] explicit_bzero final
  - From: Zack Weinberg

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]