[jira] [Updated] (YARN-6721) container-executor should have stack checking

Allen Wittenauer (JIRA) Tue, 29 Aug 2017 21:39:16 -0700

     [ 
https://issues.apache.org/jira/browse/YARN-6721?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Allen Wittenauer updated YARN-6721:
-----------------------------------
    Target Version/s:   (was: 2.7.5)

> container-executor should have stack checking
> ---------------------------------------------
>
>                 Key: YARN-6721
>                 URL: https://issues.apache.org/jira/browse/YARN-6721
>             Project: Hadoop YARN
>          Issue Type: Improvement
>          Components: nodemanager, security
>            Reporter: Allen Wittenauer
>            Assignee: Sunil G
>              Labels: security
>
> As per https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt and 
> given that container-executor is setuid, it should be compiled with stack 
> checking if the compiler supports such features.  (-fstack-check on gcc, 
> -fsanitize=safe-stack on clang, -xcheck=stkovf on "Oracle Solaris Studio", 
> others as we find them, ...)



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: yarn-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: yarn-issues-h...@hadoop.apache.org

[jira] [Updated] (YARN-6721) container-executor should have stack checking

Reply via email to