d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
d61e5aa4ed
freebsd-dev/libexec/rtld-elf
History
Christian S.J. Peron d61e5aa4ed In the event a process is tainted (setuid/setgid binaries), un-set any 
potentially dangerous environment variables all together. It should be
noted that the run-time linker will not honnor these environment variables
if the process is tainted currently. However, once a child of the tainted
process calls setuid(2), it's status as being tainted (as defined by
issetugid(2)) will be removed. This could be problematic because
subsequent activations of the run-time linker could honnor these
dangerous variables.

This is more of an anti foot-shot mechanism, there is nothing I am
aware of in base that does this, however there may be third party
utilities which do, and there is no real negative impact of clearing
these environment variables.

Discussed on:	secteam
Reviewed by:	cperciva
PR:		kern/109836
MFC after:	2 weeks
2007-05-17 18:00:27 +00:00
..
amd64 *thwack*! all the world's not i386. 2006-03-29 12:29:01 +00:00
arm Implement ELF symbol versioning using GNU semantics. This code aims 2005-12-18 19:43:33 +00:00
i386 Use C comments since we now preprocess these files with CPP. 2007-04-29 14:05:22 +00:00
ia64 We don't need --export-dynamic for ld-elf.so.1, because it's a 2007-05-16 23:19:51 +00:00
powerpc o Fix the static TLS relocation. We were subtracting the size of 2006-09-01 06:08:50 +00:00
sparc64 Fix TLS on sparc64 for statically and dynamically linked binaries 2006-10-08 02:50:34 +00:00
debug.c Fix warnings on 64 bit platforms. 2003-06-19 16:09:18 +00:00
debug.h Use C99's varadic macro syntax instead of gcc's. 2006-03-28 18:26:47 +00:00
libmap.c Fix a malloc overrun in 32-bit compat libmap lookup code. 2006-01-31 06:08:28 +00:00
libmap.h Description from Dan: 2005-02-04 02:46:41 +00:00
Makefile Don't enable symbol versioning on ia64 for now. It causes 2007-05-16 23:24:15 +00:00
malloc.c In preparation for a new malloc implementation: 2006-01-12 07:28:21 +00:00
map_object.c Implement dl_iterate_phdr function. 2007-04-03 18:31:20 +00:00
rtld_lock.c Use u_int for variable manipulated by atomic ops to match atomic 2007-04-03 18:28:13 +00:00
rtld_lock.h Fix warnings; no parameters in function prototypes. 2003-06-19 02:39:37 +00:00
rtld_tls.h Add support for Thread Local Storage. 2004-08-03 08:51:00 +00:00
rtld.1 Remove %m formatter, it's ifdef 0'ed in the code from the very beginning 2007-05-12 12:26:25 +00:00
rtld.c In the event a process is tainted (setuid/setgid binaries), un-set any 2007-05-17 18:00:27 +00:00
rtld.h Implement dl_iterate_phdr function. 2007-04-03 18:31:20 +00:00
Symbol.map Catch up with the private namespace change (s/FBSDprivate/FBSDprivate_1.0). 2007-05-01 13:46:27 +00:00
xmalloc.c Add function prototypes. 2003-06-19 05:28:26 +00:00