Limit and protect execve arguments

[Qemu-devel] [PATCH v2 0/2] Limit and protect execve arguments

P J P posted 2 patches 7 years, 1 month ago

Download series mbox

Patches applied successfully (tree, apply log)
git fetch https://github.com/patchew-project/qemu tags/patchew/20170306071721.26708-1-ppandit@redhat.com

Test checkpatch passed

Test docker passed

linux-user/syscall.c | 13 +++++++++++--
1 file changed, 11 insertions(+), 2 deletions(-)

Expand all Fold all

[Qemu-devel] [PATCH v2 0/2] Limit and protect execve arguments

Posted by P J P 7 years, 1 month ago

From: Prasad J Pandit <pjp@fedoraproject.org>

Hello,

A user program could pass large number of 'argv','env' arguments to an
execve(2) call. It could lead to bad behaviour as the TARGET_NR_execve:
allocates stack memory(via alloca) for these arguments. alloca(3) is
better for allocations of upto one page(4KB) of stack memory. As anything
more could smash stack protectors in place.

This patch(v2) set attempts to fix these issues.
  -> https://lists.gnu.org/archive/html/qemu-devel/2017-03/msg00750.html

Thank you.
--
Prasad J Pandit (2):
  linux-user: limit number of arguments to execve
  linux-user: allocate heap memory for execve arguments

 linux-user/syscall.c | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

--
2.9.3