re: modstat and kaslr

To: Maxime Villard <max%m00nbsd.net@localhost>
Subject: re: modstat and kaslr
From: matthew green <mrg%eterna.com.au@localhost>
Date: Sun, 07 Jan 2018 07:37:46 +1100

Maxime Villard writes:
> Hi,
> Here is a patch [1] that hides the addresses of the kernel modules when
> 'modstat -k' is entered by an unprivileged user. The current behavior is
> preserved for root.
> 
> The addresses currently leaked cannot be used to reconstruct the layout of
> the kernel, since the module VAs are embedded in bootspace.boot, whose location
> is independent from that of each of the remaining kernel segments.
> 
> But it's still good not to leak such information, to limit the surface for ROP
> and a few other things, and this, also in the non-kaslr case. Ok?
> 
> [1] http://m00nbsd.net/garbage/module/modstat.diff

seems reasonable and needed with kaslr.

i wonder if this is something that should be hidden if security.curtain
is set, or something else with a higher hardening mode than normal,
rather than generally, or on systems without kaslr.  a higher hardened
mode should hide them from root too, i guess.

.mrg.

References:
- modstat and kaslr
  - From: Maxime Villard

Prev by Date: Re: amd64: svs
Next by Date: Go binary panics on amd64-current - SIG*unknown
Previous by Thread: Re: modstat and kaslr
Next by Thread: LVM and 4K sectors
Indexes:

Home | Main Index | Thread Index | Old Index