| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <Pine.LNX.4.64.0706071534280.6445@alien.or.mcafeemobile.com> Date: Thu, 7 Jun 2007 15:40:14 -0700 (PDT) From: Davide Libenzi <davidel@...ilserver.org> To: Ulrich Drepper <drepper@...hat.com> cc: Eric Dumazet <dada1@...mosbay.com>, Kyle Moffett <mrmacman_g4@....com>, Alan Cox <alan@...rguk.ukuu.org.uk>, Linux Kernel Mailing List <linux-kernel@...r.kernel.org>, Linus Torvalds <torvalds@...ux-foundation.org>, Andrew Morton <akpm@...ux-foundation.org>, Ingo Molnar <mingo@...e.hu> Subject: Re: [patch 7/8] fdmap v2 - implement sys_socket2 On Thu, 7 Jun 2007, Ulrich Drepper wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Davide Libenzi wrote: > > What we can sanily do, is re-random the base if no fds are in there (of > > course CLOFORK and CLOEXEC do not count). > > With the last comment you mean "count after CLOFORK and CLOEXEC", right? > So the re-basing would be done in two places: after fork and after execve? Yes. Files with the CLOFORK and CLOEXEC flag do not count for fork and exec copies. I was also planning on doing it in __put_unused_fd(), every time fmap->count goes to zero. But get_random_int() is not as cheap as I thought. If we use a cheaper (although less secure) function to mix pid & jiffies, we could do it even in there. - Davide - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists