Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <20160427083059.GB9223@chrystal.uk.oracle.com>
Date: Wed, 27 Apr 2016 10:30:59 +0200
From: Quentin Casasnovas <quentin.casasnovas@...cle.com>
To: kernel-hardening@...ts.openwall.com
Cc: Quentin Casasnovas <quentin.casasnovas@...cle.com>,
        Michael Leibowitz <michael.leibowitz@...el.com>
Subject: Re: Re: status: GRKERNSEC_KSTACKOVERFLOW

Hi Kees,

Wow, time just flew by.. !!  How are things?

On Thu, Apr 21, 2016 at 01:31:33PM -0700, Kees Cook wrote:
> On Fri, Jan 22, 2016 at 2:04 PM, Quentin Casasnovas
> >
> > Sorry I've been very bad at finding free time recenlty, being a new dad
> > takes more time than expected :)
> 
> Congratulations! Yeah, seems to be a very time-consuming endeavor. But
> you get a person out of it, so that's good. :)
>

Thanks! Oh yes. Right, it's the greatest feeling :)

> > I've got next week off so hopefully I can spend some time on this, starting
> 
> I hope you used your week off for non-work things. :)
>

I did, whoops.

> > with moving the thread_info off the stack and then splitting properly the
> > rest of the KSTACK_OVERFLOW.
> 
> It seems like moving thread_info off the stack (and the gcc plugin
> infrastructure) is a prerequisite for KRANDSTRUCT too, which Michael
> has been looking at. If either of you have patches for this, I'd love
> to get them on the list.

Gah I'm really sorry, I have no progress to communicate so far.  I didn't
really find the time in the past few months but I do intend to work on this
if nobody beats me to it!

To bo honest I was a bit put off by Brad's comments on his twitter account,
making fun of the few things I initially missed.  I realise now, given his
own reaction to mistakes, that I should not have.

> 
> If you want to rebase off this, I've been tracking Emese's plugin work here:
> http://git.kernel.org/cgit/linux/kernel/git/kees/linux.git/log/?h=kspp/gcc-plugins
>

Great thanks!  Pretty cool Dmitry's gcc patch was ported to its own plugin,
as I've mentioned in the past we've been using that here to run AFL on the
kernel, so it's great if it makes it to mainline!

Quentin

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.