projects / platform / upstream / glibc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 49b036b) | patch
ld.so: Examine GLRO to detect inactive loader [BZ #20204]
authorFlorian Weimer <fweimer@redhat.com>
Mon, 18 Dec 2017 19:04:13 +0000 (20:04 +0100)
committerFlorian Weimer <fweimer@redhat.com>
Mon, 18 Dec 2017 19:04:13 +0000 (20:04 +0100)
commit8e1472d2c1e25e6eabc2059170731365f6d5b3d1
tree5b29308e6b00178a34422b6f7bb7b4f9252801dctree | snapshot
parent49b036bce9f021ae994a85aee8b410d20b29c8b7commit | diff
ld.so: Examine GLRO to detect inactive loader [BZ #20204]

GLRO (_rtld_global_ro) is read-only after initialization and can
therefore not be patched at run time, unlike the hook table addresses
and their contents, so this is a desirable hardening feature.

The hooks are only needed if ld.so has not been initialized, and this
happens only after static dlopen (dlmopen uses a single ld.so object
across all namespaces).

Reviewed-by: Carlos O'Donell <carlos@redhat.com>
15 files changed:
ChangeLog diff | blob | history
dlfcn/dladdr.c diff | blob | history
dlfcn/dladdr1.c diff | blob | history
dlfcn/dlclose.c diff | blob | history
dlfcn/dlerror.c diff | blob | history
dlfcn/dlinfo.c diff | blob | history
dlfcn/dlmopen.c diff | blob | history
dlfcn/dlopen.c diff | blob | history
dlfcn/dlopenold.c diff | blob | history
dlfcn/dlsym.c diff | blob | history
dlfcn/dlvsym.c diff | blob | history
elf/dl-libc.c diff | blob | history
elf/rtld.c diff | blob | history
libio/vtables.c diff | blob | history
sysdeps/generic/ldsodefs.h diff | blob | history
Domain: System / Toolchain;