Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1761071AbYCWNim (ORCPT ); Sun, 23 Mar 2008 09:38:42 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1755538AbYCWNid (ORCPT ); Sun, 23 Mar 2008 09:38:33 -0400 Received: from gprs189-60.eurotel.cz ([160.218.189.60]:4760 "EHLO spitz.ucw.cz" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1755449AbYCWNic (ORCPT ); Sun, 23 Mar 2008 09:38:32 -0400 Date: Sun, 23 Mar 2008 14:25:17 +0100 From: Pavel Machek To: Andi Kleen Cc: Nicholas Miell , Ulrich Drepper , Andrew Morton , linux-kernel@vger.kernel.org, linux-mm@kvack.org Subject: Re: [PATCH prototype] [0/8] Predictive bitmaps for ELF executables Message-ID: <20080323132517.GB4580@ucw.cz> References: <20080320090005.GA25734@one.firstfloor.org> <20080321172644.GG2346@one.firstfloor.org> <20080322071755.GP2346@one.firstfloor.org> <1206170695.2438.39.camel@entropy> <20080322091001.GA7264@one.firstfloor.org> <1206180991.2438.43.camel@entropy> <20080322142949.GB10687@one.firstfloor.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20080322142949.GB10687@one.firstfloor.org> User-Agent: Mutt/1.5.9i Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1753 Lines: 46 On Sat 2008-03-22 15:29:49, Andi Kleen wrote: > On Sat, Mar 22, 2008 at 03:16:31AM -0700, Nicholas Miell wrote: > > > > *sigh* this is probably true > > Actually it is a relatively weak argument assuming the standard > 4k xattrs, but still an issue. > > The other stronger argument against it is that larger xattrs tend to be > outside the inode so you would have another seek again. > > > > and a mess to manage (a lot of tools don't know about them) > > > > At this point in time, all tools that don't support xattrs are > > defective, > > Good joke. > > > I just have an instinctive aversion towards the kernel mucking around in > > ELF objects -- for one thing, you're going to have to blacklist > > cryptographically signed binaries. > > What signed binaries? > > Anyways there are two ways to deal with this: > > - Run the executable through a little filter that zeroes the bitmap before > computing the checksum. That is how rpm -V deals with prelinked binaries which > have a similar issue. You can probably reuse the scripts from rpm. Is this good idea? Attacker can send you binary with the bitmap inverted, it is now slow on your system and signature matches. ...might be important for benchmarks... 'here, see, Oracle is slow. Feel free to verify the signature'. ...ok, I guess it is not too serious, because it is similar to fragmentation.... -- (english) http://www.livejournal.com/~pavelmachek (cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/