[
https://issues.apache.org/jira/browse/YARN-6721?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16149964#comment-16149964
]
Hudson commented on YARN-6721:
------------------------------
SUCCESS: Integrated in Jenkins build Hadoop-trunk-Commit #12289 (See
[https://builds.apache.org/job/Hadoop-trunk-Commit/12289/])
YARN-6721. container-executor should have stack checking (aw: rev
0adc3a0533e90c8a42c5924be4847753e7f8d281)
* (edit) hadoop-common-project/hadoop-common/HadoopCommon.cmake
* (edit)
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-nodemanager/src/CMakeLists.txt
> container-executor should have stack checking
> ---------------------------------------------
>
> Key: YARN-6721
> URL: https://issues.apache.org/jira/browse/YARN-6721
> Project: Hadoop YARN
> Issue Type: Improvement
> Components: nodemanager, security
> Reporter: Allen Wittenauer
> Assignee: Allen Wittenauer
> Priority: Critical
> Labels: security
> Fix For: 3.0.0-beta1
>
> Attachments: YARN-6721.00.patch, YARN-6721.01.patch,
> YARN-6721.02.patch
>
>
> As per https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt and
> given that container-executor is setuid, it should be compiled with stack
> checking if the compiler supports such features. (-fstack-check on gcc,
> -fsanitize=safe-stack on clang, -xcheck=stkovf on "Oracle Solaris Studio",
> others as we find them, ...)
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
