Re: [PATCH] Fix CAN info leak/minor heap overflow

view
thread

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Oliver Hartkopp

Subject: Re: [PATCH] Fix CAN info leak/minor heap overflow

Date: Tuesday, November 9, 2010 - 11:52 pm

On 09.11.2010 18:05, David Miller wrote:
quoted text> From: Oliver Hartkopp <socketcan@hartkopp.net>
> Date: Tue, 09 Nov 2010 08:52:21 +0100
> 
>> Once this patch is applied (and the procfs layout is changed anyway), i'd also
>> like to send a patch from my backlog that would extend the procfs output for
>> can-bcm with an additional drop counter.
> 
> I find this kind of discussion extremely disappointing.
> 
> All of this stuff you CAN guys do with procfs files and version
> strings is completely wrong and bogus.
> 
> Once you create a procfs file layout, you're basically stuck and you
> can at best only reasonably add new fields at the end, you can't
> really change existing fields.
> 
> And sysfs would have been a lot more appropriate, you could use
> attributes for each value you want to export and then just add new
> sysfs attributes when you want to export new values which has very
> clear semantics and backwards compatability implications.

I admit that from my todays knowledge i would have done things differently.
But the network layer information bits have been always exposed in /proc/net
as it was in 2003 when we started the implementation on a 2.4.x kernel.
There are netdriver infos in sysfs but no netlayer entries.

From my point of view the only thing could be to improve the current
situation, which the posted patch does:

- remove kernel addresses that were only relevant at implementation time
- allow AF_CAN protocols to provide their own information due to their needs
- provide inode numbers that can be found in procfs at several places
  => improvements for developers in userspace & kernelspace

The patch has been discussed on SocketCAN ML and the filter entries have not
been identified as a problem for userspace tools. E.g. /proc/net/can/stats is
one of the entries that's used by userspace tools.

IMHO the patch improves the historic situation and fixes the useless leakage
of kernel addresses. Please consider to apply that procfs changes.

Best regards,
Oliver
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[SECURITY] CAN info leak/minor heap overflow, Dan Rosenberg, (Tue Nov 2, 11:28 am)

Re: [SECURITY] CAN info leak/minor heap overflow, Oliver Hartkopp, (Tue Nov 2, 12:43 pm)

Re: [SECURITY] CAN info leak/minor heap overflow, Dan Rosenberg, (Tue Nov 2, 12:53 pm)

Re: [Security] [SECURITY] CAN info leak/minor heap overflow, Linus Torvalds, (Tue Nov 2, 12:57 pm)

Re: [SECURITY] CAN info leak/minor heap overflow, Oliver Hartkopp, (Tue Nov 2, 1:16 pm)

Re: [Security] [SECURITY] CAN info leak/minor heap overflow, Oliver Hartkopp, (Tue Nov 2, 1:19 pm)

[PATCH] Fix CAN info leak/minor heap overflow, Urs Thuermann, (Fri Nov 5, 11:33 am)

Re: [PATCH] Fix CAN info leak/minor heap overflow, Oliver Hartkopp, (Tue Nov 9, 12:52 am)

Re: [PATCH] Fix CAN info leak/minor heap overflow, David Miller, (Tue Nov 9, 10:05 am)

Re: [PATCH] Fix CAN info leak/minor heap overflow, Oliver Hartkopp, (Tue Nov 9, 11:52 pm)

Re: [PATCH] Fix CAN info leak/minor heap overflow, David Miller, (Wed Nov 10, 10:51 am)

Re: [PATCH] Fix CAN info leak/minor heap overflow, Oliver Hartkopp, (Wed Nov 10, 3:10 pm)

Navigation

Popular discussions


linux-kernel:
Trent Waddington	Re: Gaming Interface
Takashi Iwai	Re: [PATCH] usb: usbmixer error path fix
Pekka Enberg	Re: latest -git: suspend: unable to handle kernel paging request (was Re: no_conso...
Dan Carpenter	Re: [patch] dma-debug: off by one issue
Jeremy Fitzhardinge	Re: [patch 1/6] Re-enable VDSO by default with PARAVIRT
git:
Stephen R. van den Berg	Re: [RFC] origin link for cherry-pick and revert
Christian Stimming	git-gui: Fix broken revert confirmation.
Junio C Hamano	Re: git-svnimport
Mark Burton	Re: [PATCH] builtin-branch: highlight current remote branches with an asterisk
Johannes Schindelin	Re: [PATCH] Fix approxidate("never") to always return 0
linux-netdev:
Nick Piggin	Re: Kernel WARNING: at net/core/dev.c:1330 __netif_schedule+0x2c/0x98()
Daniel Lezcano	getsockopt(TCP_DEFER_ACCEPT) value change
David Miller	Re: 2.6.27.18: bnx2/tg3: BUG: "scheduling while atomic" trying to ifenslave a seco...
Ingo Molnar	Re: [regression] nf_iterate(), BUG: unable to handle kernel NULL pointer dereference
Gerrit Renker	[PATCH 37/37] dccp: Debugging functions for feature negotiation
git-commits-head:
Linux Kernel Mailing List	ath9k_htc: Allocate URBs properly
Linux Kernel Mailing List	bnx2x: Fan failure mechanism on additional design
Linux Kernel Mailing List	cpumask: make irq_set_affinity() take a const struct cpumask
Linux Kernel Mailing List	ARM: 5670/1: bcmring: add default configuration for bcmring arch
Linux Kernel Mailing List	ahci: Workaround HW bug for SB600/700 SATA controller PMP support
openbsd-misc:
Christophe Rioux	Implementation example of snmp
Ryan McBride	Re: Packets Per Second Limit?
Nick Holland	Re: booting openbsd on eee without cd-rom
Marco Peereboom	Re: Singularity OS
Ryan Corder	Re: 3ware hardware raid support?

Colocation donated by:

Syndicate