From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on dcvr.yhbt.net X-Spam-Level: X-Spam-ASN: AS17314 8.43.84.0/22 X-Spam-Status: No, score=-3.7 required=3.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI, PDS_RDNS_DYNAMIC_FP,RCVD_IN_DNSWL_MED,RDNS_DYNAMIC,SPF_HELO_PASS, SPF_PASS shortcircuit=no autolearn=ham autolearn_force=no version=3.4.2 Received: from sourceware.org (ip-8-43-85-97.sourceware.org [8.43.85.97]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by dcvr.yhbt.net (Postfix) with ESMTPS id 2B39B1F8C6 for ; Mon, 12 Jul 2021 10:03:42 +0000 (UTC) Received: from server2.sourceware.org (localhost [IPv6:::1]) by sourceware.org (Postfix) with ESMTP id 777013835813 for ; Mon, 12 Jul 2021 10:03:40 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 777013835813 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sourceware.org; s=default; t=1626084220; bh=ubuaKEO2V9ctqApFfhHWThdfHpK6C7atMUB9S89TRJY=; h=To:Subject:References:Date:In-Reply-To:List-Id:List-Unsubscribe: List-Archive:List-Post:List-Help:List-Subscribe:From:Reply-To:Cc: From; b=PrjJSNAQVRmZrMYiDRtWwnwOh5ouPaz3eNs+Hv9PfdiFy+Unf+aDsh1geTs7pMhvC mdGbNVmI/jvGpy3dymZeQyn7CF+vy5V/9Ok7wWM5o/M7goNmecH5Jt6yy1glmfzZXw 4vnySgdSjd/30z0G2TCqmveQiU4QpDDf8EZC5ROs= Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by sourceware.org (Postfix) with ESMTP id 48BCF384647C for ; Mon, 12 Jul 2021 10:03:21 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 48BCF384647C Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-532-_O39-1XvPNujeVpch7HZyA-1; Mon, 12 Jul 2021 06:03:17 -0400 X-MC-Unique: _O39-1XvPNujeVpch7HZyA-1 Received: from smtp.corp.redhat.com (int-mx05.intmail.prod.int.phx2.redhat.com [10.5.11.15]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id D592D79EE4; Mon, 12 Jul 2021 10:03:16 +0000 (UTC) Received: from oldenburg.str.redhat.com (ovpn-112-103.rdu2.redhat.com [10.10.112.103]) by smtp.corp.redhat.com (Postfix) with ESMTPS id E30C75D6BA; Mon, 12 Jul 2021 10:03:15 +0000 (UTC) To: Siddhesh Poyarekar Subject: Re: Security implications of debugging features References: <4d9d675f-cffa-4a5f-0af2-3be56532ce67@gotplt.org> Date: Mon, 12 Jul 2021 12:03:12 +0200 In-Reply-To: <4d9d675f-cffa-4a5f-0af2-3be56532ce67@gotplt.org> (Siddhesh Poyarekar's message of "Mon, 12 Jul 2021 15:31:00 +0530") Message-ID: <87lf6bdf33.fsf@oldenburg.str.redhat.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 X-Scanned-By: MIMEDefang 2.79 on 10.5.11.15 X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Content-Type: text/plain X-BeenThere: libc-alpha@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Libc-alpha mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , From: Florian Weimer via Libc-alpha Reply-To: Florian Weimer Cc: libc-alpha@sourceware.org Errors-To: libc-alpha-bounces+e=80x24.org@sourceware.org Sender: "Libc-alpha" * Siddhesh Poyarekar: > ~~~~~~~~~~ > Debugging features > > glibc comes with a number of debugging features that allow developers > to isolate root causes of problems. Bugs in debugging features that > are enabled by explicitly compiling applications or glibc to use them > are not considered security vulnerabilities and will be treated as > regular bugs. Examples of such features are mcheck and mtrace, which > allow debugging and tracing of glibc malloc functions. > > Bugs in debugging features that are enabled by exporting an > environment variable in the environment of a program may for now be > considered security issues in a local context. > ~~~~~~~~~~ I don't understand the second paragraph. I think we need to talk about AT_SECURE (SUID) mode in this context. The general direction makes sense to me. Thanks, Florian