Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch

• Previous message: Pasi Kärkkäinen: "Re: Promise PDC20269 (Ultra133 TX2) + Software RAID"
• In reply to: Ulrich Drepper: "Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch"
• Next in thread: Andrea Arcangeli: "Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch"
• Reply: Andrea Arcangeli: "Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date:	Tue, 3 Feb 2004 08:52:24 +0000
To: Ulrich Drepper <drepper@redhat.com>

Ulrich Drepper wrote:
> You got to be kidding. Some object fixed in the address space which can
> perform system calls. Nothing is more welcome to somebody trying to
> exploit some bugs.

Two approaches to randomising the vdso address:

  1. Selecting a random address at boot time. All tasks have the same
     vdso for that run of the kernel. Advantages: no MSR write at
     each context switch; could patch libsyscall.so at boot time with
     address if we were fanatical about optimisation (i.e. other
     libcs, not Glibc :) Disadvantages: the attacker may eventually
     learn the address.

  2. Select a random address for every new task. Advantages: harder
     to guess from studying a machine for a long time. Disadvantages:
     slower context switches; the gain from randomising each task is
     nothing if all the tasks are very long lived anyway.

-- Jamie
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Previous message: Pasi Kärkkäinen: "Re: Promise PDC20269 (Ultra133 TX2) + Software RAID"
• In reply to: Ulrich Drepper: "Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch"
• Next in thread: Andrea Arcangeli: "Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch"
• Reply: Andrea Arcangeli: "Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: openat() ... On Wed, 9 Nov 2005, Ulrich Drepper wrote: ... > declared this is a good idea and I can only stress that it is really essential ... programs which have to deal with lots of lookups deep in a directory tree ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: short read from /dev/urandom ... Followup to: ... By author: Ulrich Drepper ... In newsgroup: linux.dev.kernel ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: [RFC][PATCH] linux-2.6.2-rc2_vsyscall-gtod_B1.patch ... Andrea Arcangeli wrote: ... > I definitely call it a great success, ... You got to be kidding. ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: Scaling noise ... >>From all accounts, OpenSSI sounds more promising, but I need to spend some ... No kidding. ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) invalid fadvise parameter ... The len parameter for fadvise has a signed type and negative values ... The attached patch does the job. ... ā˛§ Ulrich Drepper ā˛§ Red Hat, Inc. ā˛§ 444 Castro St ā˛§ Mountain View, CA ā¯– ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel)