Bug#1041552: HFS/HFS+ are insecure

To: debian-devel@lists.debian.org
Cc: debian-kernel@lists.debian.org, 1041552@bugs.debian.org
Subject: Bug#1041552: HFS/HFS+ are insecure
From: Magissia <debianlist@magissia.com>
Date: Fri, 21 Jul 2023 11:05:00 +0200
Message-id: <[🔎] 3aa153b6550a72e7297ec0af9cd1b41aad3aab30.camel@magissia.com>
Reply-to: Magissia <debianlist@magissia.com>, 1041552@bugs.debian.org
In-reply-to: <[🔎] ZLpIC6moiUdmca3y@bongo.bofh.it>
References: <ab7a9477-ddc7-430f-b4ee-c67251e879b0@app.fastmail.com> <2575F983-D170-4B79-A6BA-912D4ED2CC73@dubeyko.com> <46F233BB-E587-4F2B-AA62-898EB46C9DCE@dubeyko.com> <Y7bw7X1Y5KtmPF5s@casper.infradead.org> <50D6A66B-D994-48F4-9EBA-360E57A37BBE@dubeyko.com> <CACT4Y+aJb4u+KPAF7629YDb2tB2geZrQm5sFR3M+r2P1rgicwQ@mail.gmail.com> <ZLlvII/jMPTT32ef@casper.infradead.org> <2d0bd58fb757e7771d13f82050a546ec5f7be8de.camel@physik.fu-berlin.de> <[🔎] ZLl1PLU938klkucC@bongo.bofh.it> <20230721082012.GA19433@srcf.ucam.org> <[🔎] ZLpIC6moiUdmca3y@bongo.bofh.it> <[🔎] ZLl1PLU938klkucC@bongo.bofh.it>

Looks reasonable.

Le vendredi 21 juillet 2023 à 10:55 +0200, Marco d'Itri a écrit :
> On Jul 21, Matthew Garrett <mjg59@srcf.ucam.org> wrote:
> 
> > > You are totally correct.
> > > Kernel team, please blacklist HFS/HFS+ for automounting.
> > 
> > Isn't this a userland policy decision? udisks will happily trigger
> > a 
> > module load for hfsplus if udev has identified it, and I don't
> > think 
> > there's a trivial mechanism for the kernel to disable that. I
> > believe 
> 
> Yes, I was also thinking about this and I believe that you are right.
> The kernel team did this in the past for some uncommon network 
> protocols, but they could do it themselves because these modules are 
> autoloaded using aliases.
> 
> Since I happen to be the kmod maintainer it looks like that solving
> this
> is on me. :-)
> 
> Unless somebody has a better idea then then my plan is to ship in
> the 
> next upload of kmod a file in /etc/modprobe.d/ which uses the
> blacklist 
> directive to prevent automatically loading some file system modules.
> 
> By looking at the MAINTAINERS file I have identified these file
> systems 
> marked as "orphan" and "odd fixes":
> 
> efs
> hfs
> hfaplus
> qnx6
> sysv
> 
> affs
> ecryptfs
> jffs2
> jfs
> 
> And I think that I can also safely add a few more which while
> actively 
> maintained I believe are only used in a retrocomputing context or
> are 
> generally uncommon anyway:
> 
> befs
> bfs
> hpfs
> omfs
> qnx4
> reiserfs
> spu
> ufs
> 
> Did i miss anything?
> 
> I think that all of these have enough of a niche usage that it would
> not 
> be an unreasonable burden for the affected users to manually load
> the 
> modules when needed (ad hoc or using /etc/modules-load.d/).
>

Reply to:

References:
- Bug#1041552: HFS/HFS+ are insecure
  - From: Marco d'Itri <md@Linux.IT>
- Re: HFS/HFS+ are insecure
  - From: Marco d'Itri <md@Linux.IT>

Prev by Date: Re: HFS/HFS+ are insecure
Next by Date: Re: HFS/HFS+ are insecure
Previous by thread: Re: HFS/HFS+ are insecure
Next by thread: Re: HFS/HFS+ are insecure
Index(es):
- Date
- Thread