From owner-freebsd-arch@FreeBSD.ORG Wed May 20 15:32:27 2015 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id CEB1B851 for ; Wed, 20 May 2015 15:32:27 +0000 (UTC) Received: from mail-ig0-x232.google.com (mail-ig0-x232.google.com [IPv6:2607:f8b0:4001:c05::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 95C6F1906 for ; Wed, 20 May 2015 15:32:27 +0000 (UTC) Received: by igbyr2 with SMTP id yr2so105631462igb.0 for ; Wed, 20 May 2015 08:32:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type:content-transfer-encoding; bh=TIgrHWEzLGOTf92WXS/yh+1ybNDtniBxmTHvK12+7+Y=; b=YX61s5UBVp9zCwyr13ZOzADkwj1FVje1dDdVVY121OBcQbljTRN+mWk37q+4CrETWy Mn9gruzaVAtwFTZiEDhlppJYq/CaeyLqnPT5okdfAq7wu6nHeyLS9r119U1OnX6R6r10 HtX+ZiIkQ8nNUUElN58Ad0y1u84D69zipsYgfQktkyRRzBYWEdi+A4/bO/DC4Vi5/P/E As2vZGvNlOeRS11wyVasB2hDdOQ4aKsQ9/uEkY6vcvffmoQxpVGdmVNXtZBTizGhx0YM ZVHjGzlTyHef1Mi7Mhy18LJAeTaS2OTEbAlJ/JvefaZ0gLnQjzBvAIv/pEQE4igU7G0Q 94mg== MIME-Version: 1.0 X-Received: by 10.107.34.140 with SMTP id i134mr1104618ioi.88.1432135947011; Wed, 20 May 2015 08:32:27 -0700 (PDT) Sender: adrian.chadd@gmail.com Received: by 10.36.38.133 with HTTP; Wed, 20 May 2015 08:32:26 -0700 (PDT) In-Reply-To: <1432135200.4153.3.camel@hardenedbsd.org> References: <1426878339.5550.29.camel@hardenedbsd.org> <9043388.Uf7dufN8KZ@shawnwebb-laptop> <1432135200.4153.3.camel@hardenedbsd.org> Date: Wed, 20 May 2015 08:32:26 -0700 X-Google-Sender-Auth: --zIQrFU0G35fHysDMc7IbXBAmQ Message-ID: Subject: Re: ASLR work into -HEAD ? From: Adrian Chadd To: Shawn Webb Cc: Warner Losh , Oliver Pinter , "freebsd-arch@freebsd.org" , HardenedBSD Core Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 May 2015 15:32:27 -0000 Robert's been busy on a conference presentation. That's happening this week, so I'll poke him about it later in the week and see if he has some more cycles to review things. Thanks! -a On 20 May 2015 at 08:20, Shawn Webb wrote: > On Sat, 2015-03-21 at 10:43 -0400, Shawn Webb wrote: >> On Friday, March 20, 2015 03:14:30 PM Warner Losh wrote: >> > > On Mar 20, 2015, at 1:05 PM, Shawn Webb >> > > wrote: >> > > >> > > On Fri, 2015-03-20 at 14:17 -0400, Shawn Webb wrote: >> > >> On Fri, 2015-03-20 at 09:28 -0600, Warner Losh wrote: >> > >>>> On Mar 19, 2015, at 2:31 PM, Oliver Pinter >> > >>>> wrote:>>>> >> > >>>> On Thu, Mar 19, 2015 at 9:04 PM, Adrian Chadd >> wrote: >> > >>>>> On 19 March 2015 at 12:56, Warner Losh wrote: >> > >>>>>>> On Mar 19, 2015, at 12:53 PM, Adrian Chadd >> > >>>>>>> wrote: >> > >>>>>>> >> > >>>>>>> Hi, >> > >>>>>>> >> > >>>>>>> Apparently this is done but has stalled: >> > >>>>>>> >> > >>>>>>> https://reviews.freebsd.org/D473 >> > >>>>>>> >> > >>>>>>> Does anyone have any strong objections to it landing in the tr= ee >> > >>>>>>> as-is? >> > >>>>>> >> > >>>>>> There=E2=80=99s rather a lot of them specifically spelled out i= n the code >> > >>>>>> review. >> > >>>>>> >> > >>>>>> Many of the earlier ones were kinda blown off, so I=E2=80=99ve = not been >> > >>>>>> inclined >> > >>>>>> to take the time to re-review it. Glancing at it, I see several= minor >> > >>>>>> issues that should be cleaned up. >> > >>>>> >> > >>>>> Cool. Thanks for taking the time to look at it again. >> > >>>>> >> > >>>>> Shawn is in #freebsd on freenode irc, so if you/others want a mo= re >> > >>>>> interactive review then he's there during the day. >> > >>>> >> > >>>> Please CC the core@hardenedbsd.org in future please, when you are >> > >>>> talking about this issue. >> > >>>> >> > >>>> Adrian: do you able to review the MIPS or ARM part especially or = test >> > >>>> them? >> > >>> >> > >>> Adrian: Do not commit the changes. >> > >>> >> > >>> I=E2=80=99ve gone back and re-read Robert Watson=E2=80=99s rather = long review and it >> > >>> appears that virtually none of that has been addressed. Until it i= s, do >> > >>> not commit it. This code interacts with dangerous parts of the sys= tem, >> > >>> and the default cannot be to just let it in because no one has obj= ected >> > >>> recently. Objections have been made, they have been quantified, th= ey >> > >>> haven=E2=80=99t been answered or acted upon. Until that changes, y= ou can assume >> > >>> the objections remain in place and asking again without fixing the= m >> > >>> isn=E2=80=99t going to change the answer. >> > >>> >> > >>> Warner >> > >> >> > >> Warner, >> > >> >> > >> We've fixed the vast majority of the concerns raised in that review= . To >> > >> say "virtually none of that has been addressed" and "they haven't b= een >> > >> answered or acted upon" is a blatant lie. The fact that there are s= o >> > >> many revisions of the patch is proof. We even made our ASLR >> > >> implementation for FreeBSD less secure by providing a mechanism in >> > >> ptrace() to disable it as requested by a member of the FreeBSD >> > >> Foundation. (This "feature" doesn't exist in HardenedBSD's >> > >> implementation.) If comments like these continue, I will remove the= diff >> > >> from Phabricator and close the BugZilla ticket. FreeBSD can feel fr= ee to >> > >> pull from us, but we won't make any effort to proactively upstream = our >> > >> work. >> > >> >> > >> With that said, I have missed a few of the concerns raised. There's= so >> > >> many comments/concerns in that review that it's easy to miss a few.= I >> > >> will address them tonight and upload a new patch tomorrow. >> > > >> > > I've updated the patch. Is there anything I've missed? >> > >> > I=E2=80=99ve taken a look at the updated patch and see that it address= ed the >> > issues I raised. It almost looks like the update to the review a month >> > ago was the wrong version, since so many more of the original >> > comments appear to be addressed than when I looked. Thanks! >> > >> > Warner >> >> I've updated the patch again. Please let me know if there's anything I'v= e >> missed. Otherwise, I'd love to see this committed in HEAD. :-) >> > > Does anyone have any updates since I last updated the patch over a month > ago? What's needed to get this patch in? > > Thanks, > > Shawn