diff options
author | Florian Weimer <fweimer@redhat.com> | 2017-12-18 20:04:13 +0100 |
---|---|---|
committer | Florian Weimer <fweimer@redhat.com> | 2017-12-18 20:04:13 +0100 |
commit | 8e1472d2c1e25e6eabc2059170731365f6d5b3d1 (patch) | |
tree | 5b29308e6b00178a34422b6f7bb7b4f9252801dc /dlfcn/dlopenold.c | |
parent | 49b036bce9f021ae994a85aee8b410d20b29c8b7 (diff) | |
download | glibc-8e1472d2c1e25e6eabc2059170731365f6d5b3d1.zip glibc-8e1472d2c1e25e6eabc2059170731365f6d5b3d1.tar.gz glibc-8e1472d2c1e25e6eabc2059170731365f6d5b3d1.tar.bz2 |
ld.so: Examine GLRO to detect inactive loader [BZ #20204]
GLRO (_rtld_global_ro) is read-only after initialization and can
therefore not be patched at run time, unlike the hook table addresses
and their contents, so this is a desirable hardening feature.
The hooks are only needed if ld.so has not been initialized, and this
happens only after static dlopen (dlmopen uses a single ld.so object
across all namespaces).
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Diffstat (limited to 'dlfcn/dlopenold.c')
-rw-r--r-- | dlfcn/dlopenold.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/dlfcn/dlopenold.c b/dlfcn/dlopenold.c index a3db500..d899c4e 100644 --- a/dlfcn/dlopenold.c +++ b/dlfcn/dlopenold.c @@ -70,7 +70,7 @@ __dlopen_nocheck (const char *file, int mode) mode |= RTLD_LAZY; args.mode = mode; - if (__glibc_unlikely (_dlfcn_hook != NULL)) + if (!rtld_active ()) return _dlfcn_hook->dlopen (file, mode, RETURN_ADDRESS (0)); return _dlerror_run (dlopen_doit, &args) ? NULL : args.new; |