From: Jan Kratochvil <jan.kratochvil@redhat.com>
To: Stan Shebs <stanshebs@earthlink.net>
Cc: gdb-patches@sourceware.org
Subject: Re: [patch] New set auto-load-local-gdbinit + disable it by default
Date: Tue, 24 Jan 2012 15:54:00 -0000 [thread overview]
Message-ID: <20120124151744.GA30630@host2.jankratochvil.net> (raw)
In-Reply-To: <4F1DFB12.6060009@earthlink.net>
On Tue, 24 Jan 2012 01:28:02 +0100, Stan Shebs wrote:
> From the tenor of the discussion, I get the impression of
> willingness to break longstanding development habits for most GNU
> folks in order to tick off a couple boxes on the security checklist.
This CVE is a result of my request to Red Hat security people to evaluate the
security risk of .gdbinit + PythonGDB + other issues being addressed. Red Hat
security considers this behavior as a valid risk and therefore they filed CVE
for it. This way I can reference a professionals consider this GDB behavior
risky and it is just not my false and unfounded opinion.
> Before making any specific changes, I think it would be prudent to
> ping all the groups that have their own .gdbinit files; if they're
> OK with the changes, then great.
I do not find acceptable to keep GDB insecure just because other projects want
it so.
> Otherwise I think there will be a
> flood of complaints, and possibly people distributing versions of
> GDB with the change reverted, which would defeat the purpose. :-)
I am fine many people will want the old .gdbinit behavior, various settings for
it are being both implemented
echo 'set auto-load-local-gdbinit on' >>~/.gdbinit
and futher discussed. But the users of .gdbinit
(a) should be at least warned it is insecure in some cases.
(b) New users should no longer get used to this problematic behavior.
> I would imagine that the people who open tarballs from unknown
> sources and run GDB on the contents already know about -nx and -x,
> eh?
-nx is definitely not enough:
On Tue, 17 Jan 2012 18:48:39 +0100, Jan Kratochvil wrote:
# Now instead of just -nx one has to use also "set auto-load-scripts off",
# use -ex "file X" and -ex "core-file Y" instead of just X and Y to get that
# "set auto-load-scripts off" executed first,
# use beforehand -ex "set libthread-db-search-path /foo", OK, that may be enough
# if I did not miss anything else.
And I forgot in the paragraph above about JIT which I have no idea how to
disable.
Thanks,
Jan
prev parent reply other threads:[~2012-01-24 15:18 UTC|newest]
Thread overview: 54+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-01-17 10:16 Jan Kratochvil
2012-01-17 12:34 ` Eli Zaretskii
2012-01-17 13:42 ` Joel Brobecker
2012-01-17 14:49 ` [patch 7.4] Deprecate local .gdbinit [Re: [patch] New set auto-load-local-gdbinit + disable it by default] Jan Kratochvil
2012-01-17 16:22 ` Doug Evans
2012-01-17 20:22 ` [patch] New set auto-load-local-gdbinit + disable it by default Tom Tromey
2012-01-17 16:15 ` Doug Evans
2012-01-17 16:34 ` Jan Kratochvil
2012-01-17 16:48 ` Doug Evans
2012-01-17 17:27 ` Jan Kratochvil
2012-01-17 17:33 ` Doug Evans
2012-01-17 17:55 ` Jan Kratochvil
2012-01-17 18:29 ` Eli Zaretskii
2012-01-17 18:35 ` Jan Kratochvil
2012-01-17 19:54 ` Tom Tromey
2012-01-17 18:31 ` Doug Evans
2012-01-17 18:44 ` Jan Kratochvil
2012-01-17 19:12 ` Doug Evans
2012-01-17 19:20 ` Jan Kratochvil
2012-01-17 19:55 ` Tom Tromey
2012-01-17 20:24 ` Pedro Alves
2012-01-17 20:26 ` Tom Tromey
2012-01-17 20:35 ` Jan Kratochvil
2012-01-17 20:56 ` Pedro Alves
2012-01-17 19:30 ` Matt Rice
2012-01-17 19:37 ` Jan Kratochvil
2012-01-17 20:26 ` Tom Tromey
2012-01-17 18:00 ` Eli Zaretskii
2012-01-17 18:28 ` Jan Kratochvil
2012-01-17 18:43 ` Eli Zaretskii
2012-01-17 19:02 ` Jan Kratochvil
2012-01-17 20:29 ` Tom Tromey
2012-01-17 20:49 ` Jan Kratochvil
2012-01-17 20:54 ` Doug Evans
2012-01-17 21:10 ` Tom Tromey
2012-01-17 21:13 ` Eli Zaretskii
2012-01-17 21:14 ` Tom Tromey
2012-01-18 4:26 ` Joel Brobecker
2012-01-18 19:38 ` Jan Kratochvil
2012-01-18 20:01 ` Doug Evans
2012-01-19 6:30 ` Joel Brobecker
2012-01-19 12:57 ` [commit] rm gdb/testsuite/.gdbinit [Re: [patch] New set auto-load-local-gdbinit + disable it by default] Jan Kratochvil
2012-01-19 21:07 ` [patch] New set auto-load-local-gdbinit + disable it by default Tom Tromey
2012-01-19 21:47 ` Jan Kratochvil
2012-01-19 21:53 ` Doug Evans
2012-01-20 4:11 ` Jan Kratochvil
2012-01-19 21:06 ` Tom Tromey
2012-01-17 22:16 ` Doug Evans
2012-01-18 3:05 ` Tom Tromey
2012-01-17 16:26 ` Matt Rice
2012-01-17 16:57 ` Doug Evans
2012-01-17 20:09 ` Tom Tromey
2012-01-24 0:33 ` Stan Shebs
2012-01-24 15:54 ` Jan Kratochvil [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20120124151744.GA30630@host2.jankratochvil.net \
--to=jan.kratochvil@redhat.com \
--cc=gdb-patches@sourceware.org \
--cc=stanshebs@earthlink.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox