From owner-freebsd-arch@freebsd.org  Mon Nov  2 14:33:10 2015
Return-Path: <owner-freebsd-arch@freebsd.org>
Delivered-To: freebsd-arch@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1D03AA0249A
 for <freebsd-arch@mailman.ysv.freebsd.org>;
 Mon,  2 Nov 2015 14:33:10 +0000 (UTC)
 (envelope-from shawn.webb@hardenedbsd.org)
Received: from mail-vk0-x235.google.com (mail-vk0-x235.google.com
 [IPv6:2607:f8b0:400c:c05::235])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id D4967132C
 for <freebsd-arch@freebsd.org>; Mon,  2 Nov 2015 14:33:09 +0000 (UTC)
 (envelope-from shawn.webb@hardenedbsd.org)
Received: by vkfw189 with SMTP id w189so85939807vkf.2
 for <freebsd-arch@freebsd.org>; Mon, 02 Nov 2015 06:33:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=hardenedbsd_org.20150623.gappssmtp.com; s=20150623;
 h=from:to:subject:date:message-id:organization:user-agent
 :mime-version:content-type;
 bh=haN1kI5g3XVb3kyTCt7t0fERCnt1fbEQxlFp0wip9Ts=;
 b=cx4LJEPlie61zYyKgl8dMs51d24Pr+LIfzOaFH02xzAEmH2Lmtxp7vCnhHZsgZQ82R
 T98rkBfNyZGr5sFAFTsNP6E1VjoXsO1SZcin+VVF3GMxt34Lqwnr8ukHYr0DcNokLg5E
 WlbCVdZWPdqVrYMReA+s+QHsw5H8D1LhDRfecvmdT1gw33HjrkWIK+T8ZD2EukYUChz4
 yKs9gDGKk8WEfQCqPe0sJVVD1V4BSHMiILPwZi/U/qJJbgJrif6ijCFssAlf50UiaoKW
 VJDhezx+0+lsg4dkFssMoiHTVjoC6Hq0D3zk21gdXz9j33N2Mg1DnadcxesmdrNXHZEq
 oBlw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:from:to:subject:date:message-id:organization
 :user-agent:mime-version:content-type;
 bh=haN1kI5g3XVb3kyTCt7t0fERCnt1fbEQxlFp0wip9Ts=;
 b=OuwpLbk2DNbxG1nGeiC409P0RIfr1xo9nfS/eKBbH1V0+aXd13233fLstmZZtg8AQN
 iDeU1pQ2PSNSmrTrgWSEAsGVF/hAuU8D2i495qxQhHHgeoslNNrwfpw9sy1kbMR7c50Z
 L9NESJnc7NbosfmvDK+mnsjAuoMyAynFQK/AMo35WHreS4QuyBe+V4t3Mrp03yezPADA
 sb1L5aEtKnFbWoqAAaOz18s+l4g+9v6/6PaFMpnYQrVIuKbZ0kdsRdqysU/sfBJRRDjN
 gEH43Wyw0K9D02FLABAsuWXCaH6G6ssPBlXZKNVfY+B2rInXbyMiDdaKUeDYbb/JwTxK
 3twA==
X-Gm-Message-State: ALoCoQlNfrcrP0SaE6djE1TStDLs5KjSdmvOt3gdd0kjy0wHmHWM+qtX4gitjU1F0c39vhYREVbDeXaAICkcergNu/nvb+5VbZUxHWHNq3QCt0U7HrESW5rO3W8vXnt6Irb9f2On7ma7fmHCp0vFldPIZp5QESPqn/Hje1SNzGroLgCeM++3HgIC8dyJ5OPKB9GyRsU5W47R
X-Received: by 10.31.161.146 with SMTP id k140mr15257787vke.90.1446474788946; 
 Mon, 02 Nov 2015 06:33:08 -0800 (PST)
Received: from hbsd-dev-laptop.localnet ([129.6.251.181])
 by smtp.gmail.com with ESMTPSA id j3sm6230110vkd.3.2015.11.02.06.33.08
 for <freebsd-arch@freebsd.org>
 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Mon, 02 Nov 2015 06:33:08 -0800 (PST)
From: Shawn Webb <shawn.webb@hardenedbsd.org>
To: 'freebsd-arch' <freebsd-arch@freebsd.org>
Subject: Per-process PS_STRINGS, USRSTACK, shared_obj_base, and sigcode_base
Date: Mon, 02 Nov 2015 09:33:01 -0500
Message-ID: <2534498.OFUIiDbxWf@hbsd-dev-laptop>
Organization: HardenedBSD
User-Agent: KMail/4.14.3 (FreeBSD/11.0-CURRENT-HBSD; KDE/4.14.3; amd64; ; )
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="nextPart21333580.NfgAIexNHh";
 micalg="pgp-sha256"; protocol="application/pgp-signature"
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Discussion related to FreeBSD architecture <freebsd-arch.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-arch>,
 <mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch/>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
 <mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Nov 2015 14:33:10 -0000


--nextPart21333580.NfgAIexNHh
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="us-ascii"

Hey All,

I've updated this patch to the latest HEAD. This patch is a preparatory=
 patch=20
for ASLR. It makes it so that PS_STRINGS, USRSTACK, the VDSO, and the s=
ignal=20
trampolining code pointers are all stored per-process. Going forward, w=
ith=20
HardenedBSD's ASLR patch, these values will be modified to introduce=20=

randomness/entropy. The goal with this patch is to allow randomization =
of the=20
stack base address and the VDSO.

You can find the patch here: https://reviews.freebsd.org/D3565

Thanks,

=2D-=20
Shawn Webb
HardenedBSD

GPG Key ID:                0x6A84658F52456EEE
GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89  3D9E 6A84 658F 5245 6EEE
--nextPart21333580.NfgAIexNHh
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part.
Content-Transfer-Encoding: 7Bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=diQZ
-----END PGP SIGNATURE-----

--nextPart21333580.NfgAIexNHh--