Skip to content

Don't use env::current_exe with libbacktrace #33554

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 14, 2016
Merged

Don't use env::current_exe with libbacktrace #33554

merged 1 commit into from
May 14, 2016

Conversation

@sfackler
Copy link
Member

If the path we give to libbacktrace doesn't actually correspond to the
current process, libbacktrace will segfault at best.

cc #21889

r? @alexcrichton
cc @semarie

alexcrichton
alexcrichton reviewed May 11, 2016
View reviewed changes
src/libstd/sys/common/gnu/libbacktrace.rs Outdated
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you elaborate here and indicate that it's a security concern for not reading an arbitrary executable? Basically emphasize the facts of:

  • You can probably trick current_exe to point at any file, or rather that's the worst case.
  • There's been at least one bug reported in libbacktrace for corrupt dwarf info
  • We don't know of any other vulnerabilities, but at worse we assume that arbitrary code execution is possible with corrupt dwarf info to libbacktrace (until we find evidence to the contrary)

And thus we don't pass a pathname to libbacktrace

@semarie
Copy link
Contributor

semarie commented May 11, 2016

I agree with the comment of @alexcrichton.

I expect also some tests should be marked ignored for some platforms (like run-pass/backtrace.rs for example).

@sfackler
Copy link
Member Author

Updated. I fixed run-pass/backtrace-debuginfo.rs - I guess we'll let the builders find out what other tests need to be fixed.

@alexcrichton
Copy link
Member

@bors: r+ 9c2e691

@Manishearth Manishearth mentioned this pull request May 12, 2016
Closed
@eddyb eddyb mentioned this pull request May 12, 2016
Closed
Manishearth added a commit to Manishearth/rust that referenced this pull request May 12, 2016
@Manishearth
Rollup merge of rust-lang#33554 - sfackler:no-current-exe, r=alexcric…
b4e4e84 
…hton

Don't use env::current_exe with libbacktrace

If the path we give to libbacktrace doesn't actually correspond to the
current process, libbacktrace will segfault *at best*.

cc rust-lang#21889

r? @alexcrichton
cc @semarie
@nagisa
Copy link
Member

nagisa commented May 12, 2016

This is probably the cause for http://buildbot.rust-lang.org/builders/auto-win-gnu-64-nopt-t/builds/4202/steps/test/logs/stdio.

(rollup #33589)

@sfackler
Don't use env::current_exe with libbacktrace
9393e52 
If the path we give to libbacktrace doesn't actually correspond to the
current process, libbacktrace will segfault *at best*.

cc rust-lang#21889
@sfackler
Copy link
Member Author

Thanks, fixed.

@bors r=alexcrichton

@bors
Copy link
Collaborator

bors commented May 12, 2016

📌 Commit 9393e52 has been approved by alexcrichton

eddyb added a commit to eddyb/rust that referenced this pull request May 13, 2016
@eddyb
Rollup merge of rust-lang#33554 - sfackler:no-current-exe, r=alexcric…
bab9fa2 
…hton

Don't use env::current_exe with libbacktrace

If the path we give to libbacktrace doesn't actually correspond to the
current process, libbacktrace will segfault *at best*.

cc rust-lang#21889

r? @alexcrichton
cc @semarie
@sfackler sfackler added the beta-nominated Nominated for backporting to the compiler in the beta channel. label May 14, 2016
Manishearth added a commit to Manishearth/rust that referenced this pull request May 14, 2016
@Manishearth
Rollup merge of rust-lang#33554 - sfackler:no-current-exe, r=alexcric…
4a1ce98 
…hton

Don't use env::current_exe with libbacktrace

If the path we give to libbacktrace doesn't actually correspond to the
current process, libbacktrace will segfault *at best*.

cc rust-lang#21889

r? @alexcrichton
cc @semarie
@Manishearth Manishearth mentioned this pull request May 14, 2016
Merged
bors added a commit that referenced this pull request May 14, 2016
@bors
Auto merge of #33632 - Manishearth:rollup, r=Manishearth
6ba8a1a 
Rollup of 9 pull requests

- Successful merges: #33544, #33552, #33554, #33555, #33560, #33566, #33572, #33574, #33576
- Failed merges:
@bors bors merged commit 9393e52 into rust-lang:master May 14, 2016
@sfackler sfackler deleted the no-current-exe branch May 15, 2016 16:32
@alexcrichton alexcrichton added the beta-accepted Accepted for backporting to the compiler in the beta channel. label May 16, 2016
@alexcrichton
Copy link
Member

Accepted for backport at libs triage

aturon added a commit that referenced this pull request May 17, 2016
@aturon
Merge pull request #33693 from alexcrichton/beta-next
3369382 
Backport #33554
@alexcrichton alexcrichton removed the beta-nominated Nominated for backporting to the compiler in the beta channel. label May 18, 2016
@retep998 retep998 mentioned this pull request May 31, 2016
Closed
hoodie
hoodie reviewed Jul 18, 2016
View reviewed changes
src/libstd/sys/common/gnu/libbacktrace.rs
// be in "permanent memory", so we copy it to a static and then use the
// static as the pointer.
// Things don't work so well on not-Linux since libbacktrace can't track
// down that executable this is. We at one point used env::current_exe but
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

is this meant to say: "down what executable this is. ..." ?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oops, yeah.

@petrochenkov petrochenkov mentioned this pull request Oct 25, 2016
Closed
@semarie semarie mentioned this pull request Oct 18, 2020
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@alexcrichton alexcrichton

Labels

beta-accepted Accepted for backporting to the compiler in the beta channel.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@sfackler @semarie @alexcrichton @nagisa @bors @hoodie