linux

mirror of https://github.com/torvalds/linux synced 2024-09-06 18:01:05 +00:00

History

Linus Torvalds b212921b13 elf: don't use MAP_FIXED_NOREPLACE for elf executable mappings In commit `4ed2863951` ("fs, elf: drop MAP_FIXED usage from elf_map") we changed elf to use MAP_FIXED_NOREPLACE instead of MAP_FIXED for the executable mappings. Then, people reported that it broke some binaries that had overlapping segments from the same file, and commit `ad55eac74f` ("elf: enforce MAP_FIXED on overlaying elf segments") re-instated MAP_FIXED for some overlaying elf segment cases. But only some - despite the summary line of that commit, it only did it when it also does a temporary brk vma for one obvious overlapping case. Now Russell King reports another overlapping case with old 32-bit x86 binaries, which doesn't trigger that limited case. End result: we had better just drop MAP_FIXED_NOREPLACE entirely, and go back to MAP_FIXED. Yes, it's a sign of old binaries generated with old tool-chains, but we do pride ourselves on not breaking existing setups. This still leaves MAP_FIXED_NOREPLACE in place for the load_elf_interp() and the old load_elf_library() use-cases, because nobody has reported breakage for those. Yet. Note that in all the cases seen so far, the overlapping elf sections seem to be just re-mapping of the same executable with different section attributes. We could possibly introduce a new MAP_FIXED_NOFILECHANGE flag or similar, which acts like NOREPLACE, but allows just remapping the same executable file using different protection flags. It's not clear that would make a huge difference to anything, but if people really hate that "elf remaps over previous maps" behavior, maybe at least a more limited form of remapping would alleviate some concerns. Alternatively, we should take a look at our elf_map() logic to see if we end up not mapping things properly the first time. In the meantime, this is the minimal "don't do that then" patch while people hopefully think about it more. Reported-by: Russell King <linux@armlinux.org.uk> Fixes: `4ed2863951` ("fs, elf: drop MAP_FIXED usage from elf_map") Fixes: `ad55eac74f` ("elf: enforce MAP_FIXED on overlaying elf segments") Cc: Michal Hocko <mhocko@suse.com> Cc: Kees Cook <keescook@chromium.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>		2019-10-06 13:53:27 -07:00
..
9p	9p pull request for inclusion in 5.4	2019-09-27 15:10:34 -07:00
adfs
affs
afs	Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2019-09-29 19:42:07 -07:00
autofs
befs
bfs
btrfs	for-5.4-rc1-tag	2019-09-30 10:25:24 -07:00
cachefiles
ceph	The highlights are:	2019-09-25 10:21:13 -07:00
cifs	9 smb3 patches including an important patch for debugging traces with wireshark, and 3 patches for stable	2019-09-29 19:37:32 -07:00
coda	y2038: add inode timestamp clamping	2019-09-19 09:42:37 -07:00
configfs	configfs updates for 5.4:	2019-09-19 13:09:28 -07:00
cramfs	Merge branch 'work.mount2' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2019-09-19 10:06:57 -07:00
crypto
debugfs	Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security	2019-09-28 08:14:15 -07:00
devpts
dlm
ecryptfs
efivarfs
efs
erofs	erofs: fix mis-inplace determination related with noio chain	2019-10-01 04:54:45 +08:00
exportfs
ext2	\n	2019-09-21 13:53:34 -07:00
ext4	Merge branch 'entropy'	2019-09-29 19:25:39 -07:00
f2fs	f2fs-for-5.4-rc1	2019-09-21 14:26:33 -07:00
fat	fat: delete an unnecessary check before brelse()	2019-09-25 17:51:40 -07:00
freevxfs
fscache
fuse	add virtio-fs	2019-09-27 15:54:24 -07:00
gfs2	Merge branch 'work.mount3' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2019-09-24 12:33:34 -07:00
hfs
hfsplus
hostfs
hpfs
hugetlbfs
iomap	iomap: move the iomap_dio_rw ->end_io callback into a structure	2019-09-19 15:32:45 -07:00
isofs	y2038: add inode timestamp clamping	2019-09-19 09:42:37 -07:00
jbd2	jbd2: remove jbd2_journal_inode_add_[write\|wait]	2019-09-24 15:54:07 -07:00
jffs2	Merge branch 'work.mount3' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2019-09-26 11:33:30 -07:00
jfs	y2038: add inode timestamp clamping	2019-09-19 09:42:37 -07:00
kernfs	y2038: add inode timestamp clamping	2019-09-19 09:42:37 -07:00
lockd
minix
nfs	NFS Client Updates for Linux 5.3	2019-09-26 12:20:14 -07:00
nfs_common
nfsd	Highlights:	2019-09-27 17:00:27 -07:00
nilfs2
nls
notify	Highlights:	2019-09-27 17:00:27 -07:00
ntfs	ntfs: remove (un)?likely() from IS_ERR() conditions	2019-09-26 10:10:44 -07:00
ocfs2	ocfs2: fix spelling mistake "ambigous" -> "ambiguous"	2019-09-24 15:54:07 -07:00
omfs
openpromfs
orangefs	Orangefs: a fix and a cleanup	2019-09-19 10:21:35 -07:00
overlayfs	ovl: filter of trusted xattr results in audit	2019-09-11 16:11:45 +02:00
proc	Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security	2019-09-28 08:14:15 -07:00
pstore
qnx4
qnx6
quota
ramfs	vfs: Convert ramfs, shmem, tmpfs, devtmpfs, rootfs to use the new mount API	2019-09-12 21:05:34 -04:00
reiserfs	fs/reiserfs/do_balan.c: remove set but not used variable	2019-09-25 17:51:40 -07:00
romfs	Merge branch 'work.mount2' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2019-09-19 10:06:57 -07:00
squashfs	Merge branch 'work.mount2' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2019-09-19 10:06:57 -07:00
sysfs
sysv
tracefs	Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security	2019-09-28 08:14:15 -07:00
ubifs	This pull request contains the following changes for UBI, UBIFS and JFFS2:	2019-09-21 11:10:16 -07:00
udf
ufs	y2038: add inode timestamp clamping	2019-09-19 09:42:37 -07:00
unicode	unicode: make array 'token' static const, makes object smaller	2019-09-17 11:48:24 -04:00
verity
xfs	Changes since last update:	2019-09-26 11:36:20 -07:00
aio.c
anon_inodes.c
attr.c
bad_inode.c
binfmt_aout.c
binfmt_elf.c	elf: don't use MAP_FIXED_NOREPLACE for elf executable mappings	2019-10-06 13:53:27 -07:00
binfmt_elf_fdpic.c
binfmt_em86.c
binfmt_flat.c
binfmt_misc.c
binfmt_script.c
block_dev.c	Changes for 5.4:	2019-09-18 17:35:20 -07:00
buffer.c
char_dev.c
compat.c
compat_binfmt_elf.c
compat_ioctl.c
coredump.c
d_path.c
dax.c
dcache.c
dcookies.c
direct-io.c
drop_caches.c
eventfd.c
eventpoll.c
exec.c	sched/membarrier: Fix p->mm->membarrier_state racy load	2019-09-25 17:42:30 +02:00
fcntl.c
fhandle.c
file.c
file_table.c
filesystems.c
fs-writeback.c
fs_context.c
fs_parser.c	vfs: Make fs_parse() handle fs_param_is_fd-type params better	2019-09-12 21:06:14 -04:00
fs_pin.c
fs_struct.c
fs_types.c
fsopen.c
inode.c	mm,thp: avoid writes to file with THP in pagecache	2019-09-24 15:54:11 -07:00
internal.h
io_uring.c	for-linus-2019-10-03	2019-10-04 09:56:51 -07:00
ioctl.c
Kconfig	fs-verity for 5.4	2019-09-18 16:59:14 -07:00
Kconfig.binfmt
libfs.c
locks.c	Highlights:	2019-09-27 17:00:27 -07:00
Makefile	fs-verity for 5.4	2019-09-18 16:59:14 -07:00
mbcache.c
mount.h
mpage.c
namei.c
namespace.c	Merge branch 'akpm' (patches from Andrew)	2019-09-26 10:29:42 -07:00
no-block.c
nsfs.c
open.c	fs: remove unlikely() from WARN_ON() condition	2019-09-26 10:10:30 -07:00
pipe.c
pnode.c
pnode.h
posix_acl.c
proc_namespace.c
read_write.c
readdir.c	Make filldir[64]() verify the directory entry filename is valid	2019-10-05 12:00:36 -07:00
select.c
seq_file.c
signalfd.c
splice.c
stack.c
stat.c
statfs.c	vfs: Fix EOVERFLOW testing in put_compat_statfs64	2019-10-03 14:21:35 -07:00
super.c	fuse update for 5.4	2019-09-25 09:55:59 -07:00
sync.c
timerfd.c
userfaultfd.c	userfaultfd: untag user pointers	2019-09-25 17:51:41 -07:00
utimes.c
xattr.c