From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: by sourceware.org (Postfix, from userid 48) id F12473860C0B; Fri, 19 Jul 2024 06:43:08 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org F12473860C0B DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sourceware.org; s=default; t=1721371388; bh=AgpG3l2XOvhSyMjOBnLFQwPUDUnqzTeCVwmLvichKis=; h=From:To:Subject:Date:In-Reply-To:References:From; b=H2/uWYvbfi5wEAgPGVgHohWgo/ORJRfNnyfqhNpFyJjiVu0EfLNYdTAX+FkuTeU6F ZzHbwZ5ET1sp7IPuNfIHq45MdUa6b6PlU2462CDnfSZUkvVXuoB9iexh/lEYO/Y+tC Wx1XVO+w17y3m4uZt29NLyq9R1avkjzn+AxslXF0= From: "fweimer at redhat dot com" To: glibc-bugs@sourceware.org Subject: [Bug dynamic-link/31991] Insufficient static TLS reservation when auditing leads to process start failure Date: Fri, 19 Jul 2024 06:43:08 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: glibc X-Bugzilla-Component: dynamic-link X-Bugzilla-Version: 2.31 X-Bugzilla-Keywords: X-Bugzilla-Severity: normal X-Bugzilla-Who: fweimer at redhat dot com X-Bugzilla-Status: UNCONFIRMED X-Bugzilla-Resolution: X-Bugzilla-Priority: P2 X-Bugzilla-Assigned-To: unassigned at sourceware dot org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: security- X-Bugzilla-Changed-Fields: flagtypes.name short_desc cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: http://sourceware.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 List-Id: https://sourceware.org/bugzilla/show_bug.cgi?id=3D31991 Florian Weimer changed: What |Removed |Added ---------------------------------------------------------------------------- Flags| |security- Summary|Using LD_AUDIT with |Insufficient static TLS |LD_PRELOAD and TLS |reservation when auditing |segfaults |leads to process start | |failure CC| |fweimer at redhat dot com --- Comment #1 from Florian Weimer --- Does your actual auditor define la_objsearch? This is not a segmentation fault, ld.so simply exists. In auditing mode, we must allocate the TCB early because the auditor needs it. We do not know the static TLS requirements of the application at this point. If there are audi= tors with la_objsearch defined, the requirements are in fact impossible to know = at this point. It's possible to increase the static TLS allocation by setting a tunable: export GLIBC_TUNABLES=3Dglibc.rtld.optional_static_tls=3D10000 Given the la_objsearch problem, the only thing we might be able to do here = is to reserve plenty of address space for the TCB of the main thread, so that = we can grow it in place if need be. --=20 You are receiving this mail because: You are on the CC list for the bug.=