From owner-freebsd-arch@FreeBSD.ORG Wed Jul 23 23:50:28 2014 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 36744D49 for ; Wed, 23 Jul 2014 23:50:28 +0000 (UTC) Received: from nm3-vm0.bullet.mail.bf1.yahoo.com (nm3-vm0.bullet.mail.bf1.yahoo.com [98.139.212.154]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id D60E028CA for ; Wed, 23 Jul 2014 23:50:27 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1406159419; bh=Y6YFsgnpNlewKZEL2WsE6jFv6JfzuNw2awmdusDPFhs=; h=Received:Received:Received:X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Content-Type:Mime-Version:Subject:From:In-Reply-To:Date:Cc:Message-Id:References:To:X-Mailer; b=QxSmFQRxcnXh3ChMXoBeG0edj+uEtimoCnvVGTZrS0bRTxlKsRmek32fGxQ+ZRwjhLJ5KNu1gnDjQ6J/D0Nlw3XYo0XFZ4B56DstI2wOGypXfsNU5BwGt7gzcGozrfM6T+Jx1vthKoXWQ4ejLMewBXWPDj0PT880GobCmuPYdFhtznRxWL7ZPSXRUkZ7w3snggzFSj/iehzH4s+Hpxz32W+QPzDxIPGjcQQQJ5U1P0ENK3eJuMwFMT7IFlgTCjpD4HPzEhhr8TBkAoSbuPkPV1Xo20mhlAYlPc/aAhMMj3Xj/aOdu5sEIgglpKRIAD9xCiulL72HQpq7TCRwRTZU+Q== DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s2048; d=yahoo.com; b=mXE8NSrCAVtG1Sh9XWPmCA8NPhgcJm8PCgwn3OkyKqjnBdicew+iFdp7ow+CoX570tPJNA591I+MKYWG1sDJDM9xi25+UWa9yK9S9nFut8FyYoVvNl40VzC/GGXIUVMFlY5sCPXGPYhlwDzenzbDI4nqcM7EHJHnkzuRKXg8h+QbyNxkr0joeSD+5Hpt//znkEeJg5u3lQRD5uw+aEug7k5lYjRdtOmzCXqIbOlb8Q8MQmgn+sWVBfjKo2DlK/oWQqKX/eTVpQM9YrVDgQunCQyi3RrwbiiDzYKfnTxj7VpkXRC7y1uuipX/1qYJ+Zmy6SnrjIMaJzqLeNvbkHIB9w==; Received: from [66.196.81.172] by nm3.bullet.mail.bf1.yahoo.com with NNFMP; 23 Jul 2014 23:50:19 -0000 Received: from [98.139.211.206] by tm18.bullet.mail.bf1.yahoo.com with NNFMP; 23 Jul 2014 23:50:19 -0000 Received: from [127.0.0.1] by smtp215.mail.bf1.yahoo.com with NNFMP; 23 Jul 2014 23:50:19 -0000 X-Yahoo-Newman-Id: 865338.57364.bm@smtp215.mail.bf1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: 9Xs4wCcVM1kvA1cqCVR_918nUe1xw1soGCBf_PTraCguNAP uO5r8AsqQZ9NG5lIB5ITgK4qQTvNxppPSWzOJ._beWHYvUOjRSWV6S7HETOY pV8z.adift1Bpbp8hetBkp4Ly3amNE8dW.SubSNPWEfvInZDT5skQW3GaW.t bvhXh2HB5MqDSFaNDDtX8qdUlA.wlKPkpG0EnxusWQB5MRWE7oqFnt1OZm4M xSIxaSmrpM4GAcHlKiMLgqsC8JJC24F75UaeaSZUn.fxAEA80AXqxefm9Iah _yVE95NNiFS6cBwINvjSg8VsxlnuA5vdHhBopAAeEwEVzjfHV_sLR4XOuzQV xHXvMbF2.tRpQZmmKTYiv2w8XVoIeKXVKY9LFoeYpsSKC8V5Q6W82ygrOauL FzkJ3hurvTomJCpaMKTbbzEDwJmpmbTw1rKrlul_VCVdlS3adTABnXVIlI3X rVs2aPYGblGb0Mc6lLjtInp6btwmKWNuws5gFBz1K47eNCd06e9ULS882Z1a myoYH_5NiwDVBvS36gGc1JZomklD6y1ISl6KNL5lKkDCejac7qQE0E7RNKwF 5pJdlxFexHiUPV8of.fIz6z4Zrwnt94.nXjE5OajBFPszZf.eYxT4IWowc0i WjyxEVTRLHNiNjKDIwHtgWggyIDs5rsC06AAn6BiZ.XsVHQ3OZYXckXtrJJq DEjnI_MX03JL0rRAPF5LhQYSkQl5R5Vpqv1Twk.AKvh9MWDnLF0B.35YT3MM qPRTalSXxMslwgZvpmg-- X-Yahoo-SMTP: xcjD0guswBAZaPPIbxpWwLcp9Unf Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\)) Subject: Re: [RFC] ASLR Whitepaper and Candidate Final Patch From: Pedro Giffuni In-Reply-To: <20140723234455.GP29618@pwnie.vrt.sourcefire.com> Date: Wed, 23 Jul 2014 18:50:15 -0500 Message-Id: References: <96C72773-3239-427E-A90B-D05FF0F5B782@freebsd.org> <20140720201858.GB29618@pwnie.vrt.sourcefire.com> <20140723004543.GH29618@pwnie.vrt.sourcefire.com> <20140723234455.GP29618@pwnie.vrt.sourcefire.com> To: Shawn Webb X-Mailer: Apple Mail (2.1878.6) Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18 Cc: PaX Team , Oliver Pinter , Robert Watson , Bryan Drewery , freebsd-arch@freebsd.org X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Jul 2014 23:50:28 -0000 Il giorno 23/lug/2014, alle ore 18:44, Shawn Webb ha = scritto: > On Jul 23, 2014 06:37 PM -0500, Pedro Giffuni wrote: >> Hi; >>=20 >> Il giorno 22/lug/2014, alle ore 19:45, Shawn Webb = ha scritto: >>=20 >>>>> ... >>>>=20 >>>> Hi Shawn: >>>>=20 >>>> Great news that this work is coming to fruition -- ASLR is long = overdue. >>>>=20 >>>> Are you having any luck with performance measurements? Unixbench = seems like a=20 >>>> good starting point, but I wonder if it would be useful to look, in=20= >>>> particular, at memory-mapping intensive workloads that might be = affected as a=20 >>>> result of changes in kernel VM data-structure use, or greater = fragmentation of >>>> the address space. I'm not sure I have a specific application here = in mind --=20 >>>> in the past I might have pointed out tools such as ElectricFence = that tend to=20 >>>> increase fragmentation themselves. >>>=20 >>> The unixbench tests on that laptop have finished. However, I've been >>> fighting a pesky migraine these last couple days, so I haven't had = the >>> opportunity to aggregate the results into a nice little spreadsheet. = I'm >>> hoping to finish it up by the end of the week. >>>=20 >>> I'll take a look at ElectricFence this weekend. Additionally, I have = a >>> netbook somewhere. Once I find it and its power cord, I'll install >>> FreeBSD/x86 and re-run the same tests on that. >>>=20 >>=20 >> Somewhat related to ElectricFence? will ASLR have an adverse effect = on debuggers? >>=20 >> I googled around and got to this: >>=20 >> http://www.outflux.net/blog/archives/2010/07/03/gdb-turns-off-aslr/ >=20 > I've been doing all my ClamAV development on my FreeBSD box with ASLR > enabled. Development tools like gdb and valgrind work great, even with > corefiles. I have not, however, tried lldb. >=20 OK, but it=92s worth to take a look if we need to support something to = turn it off. Apparently gdb disables ASLR on MacOSX too: http://reverse.put.as/2011/08/11/how-gdb-disables-aslr-in-mac-os-x-lion/ Pedro.