[PATCH trivial] arm64: constify hwcap_str
Catalin Marinas
catalin.marinas at arm.com
Fri Nov 8 12:19:49 EST 2013
On Fri, Nov 08, 2013 at 05:14:16PM +0000, Ard Biesheuvel wrote:
> On 8 November 2013 15:38, Catalin Marinas <catalin.marinas at arm.com> wrote:
> > On Thu, Nov 07, 2013 at 06:53:06PM +0000, Ard Biesheuvel wrote:
> [...]
> >> I agree that whether you want to put up with the additional layer of
> >> indirection, additional relocations etc is a matter of taste, but
> >> having writable pointers around that are easily dereferenced directly
> >> by unprivileged users is a bad idea in any case,
> >
> > "unprivileged users"?!
>
> Well, I know this may seem far fetched, but /proc/cpuinfo lacks any
> kind of access control because it is deemed harmless, while, as an
> unprivileged user, having some pointers in .data that you can clobber
> (through some other vulnerability) without breaking anything, and can
> conveniently dereference at your leisure by cat'ing /proc/cpuinfo, may
> well be something that could potentially be used in the wrong way.
That's far fetched indeed ;). I'm pretty sure once you can write the
.data section there are far better way to hack the kernel.
> >> so if this is your preferred solution, it's fine by me.
> >
> > My preferred solution is to leave it as it is ;).
>
> It's a trivial fix, so why not apply it?
So far my toolchain already places it in .rodata since there is no write
to these pointers.
--
Catalin
More information about the linux-arm-kernel
mailing list