From owner-freebsd-current@freebsd.org  Tue Jan 24 23:34:18 2017
Return-Path: <owner-freebsd-current@freebsd.org>
Delivered-To: freebsd-current@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 083E7CC02A5
 for <freebsd-current@mailman.ysv.freebsd.org>;
 Tue, 24 Jan 2017 23:34:18 +0000 (UTC)
 (envelope-from domagoj.stolfa@gmail.com)
Received: from mail-wm0-x232.google.com (mail-wm0-x232.google.com
 [IPv6:2a00:1450:400c:c09::232])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 888D57DE;
 Tue, 24 Jan 2017 23:34:17 +0000 (UTC)
 (envelope-from domagoj.stolfa@gmail.com)
Received: by mail-wm0-x232.google.com with SMTP id r144so2667470wme.1;
 Tue, 24 Jan 2017 15:34:17 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=date:from:to:cc:subject:message-id:references:mime-version
 :content-disposition:in-reply-to:user-agent;
 bh=JuNLsLgG2MmgZN1SVPqzmKz531dPyCXmk1o8jLXkXz8=;
 b=B9lUvPnFZhD8ZoW76V5iV1rsTX5lzoDQ8T8sv7TM+ZWHIsPpBMUU3UJmeo4GGaFwlO
 fitnVkNJvEOKn11dfRustyEPyn5vBrrOkyw2uiuDR0UPyfmZOAGh0QcwWk0ISJWLnDjZ
 Qq0CMLV25MHFf82to//jNIsqNUlMezg6Pq/WMcIYLLSQjZlEOI7Ml6w+GWG19k4AOHGM
 UPa0OVmQqi4N6s9RwoZ62Mn/lKmHj1mLK6Gt0VN/fsC7mnTpYPA1eubvZhWB6UCh2zQg
 oHYsTjO085ehKv648uuMh1lW/6TZra3XKfTADP0lqTTX+cTMithKHPghWCiCjtStK8Z1
 StPw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:date:from:to:cc:subject:message-id:references
 :mime-version:content-disposition:in-reply-to:user-agent;
 bh=JuNLsLgG2MmgZN1SVPqzmKz531dPyCXmk1o8jLXkXz8=;
 b=cCAC46niID6rNsGMNbEqiLihjXHqmlauAp5d6qBqc946QwoHREM0z/RfuuNKZdtjEd
 cnRHHN/zAUSRBvHEEo91DMRKyqPDXm+lP7JN/UFIBq3xHz6BtEDJrVKeun8XK01ZallE
 NlNukMH/ppVgUIatIdIu4AZbQD9ZoLoRSUpvG3dznmj/7aPp8JW1vTq3g+96m/TCQwSh
 rIFLkwcMVIuPNGuIk+h/D2kkR9GlHfHkJ4cm/6b9xKwz6YYH4hDBVC6lU1KznnfJb6qk
 /QVC5IR3z5OlDH6ybKwoxWtwR2BYQqlVdhUq45/DWT9Ork/qVBxB7FGr5QW6gBz2gNHr
 JoXA==
X-Gm-Message-State: AIkVDXJA7io+ycO+G41SYy8d2UvJK+qr82muKMsg9QajI/xbCWwgGYFvUt0zkLBX0EC3Xw==
X-Received: by 10.28.136.13 with SMTP id k13mr21006905wmd.94.1485300854516;
 Tue, 24 Jan 2017 15:34:14 -0800 (PST)
Received: from freebsd (dh207-122-218.xnet.hr. [88.207.122.218])
 by smtp.gmail.com with ESMTPSA id n13sm18639343wrn.40.2017.01.24.15.34.13
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Tue, 24 Jan 2017 15:34:13 -0800 (PST)
Date: Wed, 25 Jan 2017 00:34:06 +0100
From: Domagoj Stolfa <domagoj.stolfa@gmail.com>
To: Ed Maste <emaste@freebsd.org>
Cc: FreeBSD Current <freebsd-current@freebsd.org>
Subject: Re: ASLR
Message-ID: <20170124233406.GA28386@freebsd>
References: <mailman.17311.1484765636.4388.freebsd-current@freebsd.org>
 <20170118225611.GA15647@ThinkPad-X200.local>
 <CAPyFy2Ak6==qnk-_Fgtk4NP4kdqxbpcPghWHHEq86_eVG-JZ+w@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha256;
 protocol="application/pgp-signature"; boundary="CE+1k2dSO48ffgeK"
Content-Disposition: inline
In-Reply-To: <CAPyFy2Ak6==qnk-_Fgtk4NP4kdqxbpcPghWHHEq86_eVG-JZ+w@mail.gmail.com>
User-Agent: Mutt/1.7.2 (2016-11-26)
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current/>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Jan 2017 23:34:18 -0000


--CE+1k2dSO48ffgeK
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hello,

> For better or worse the term ASLR is today in common use to refer to a
> number of different approaches. Using what has become a generic term
> allows the implementation to change in the future, without changing
> the interface (e.g. sysctls, userland tools, etc.).

If I'm not mistaken, ASR is the approach that was first taken by the PaX te=
am in
an attempt to randomize mmaps. It later evolved into ASLR, however I do agr=
ee
that one should call this ASLR for compatibility reasons in the future.

> I wish there was a concise, technical comparison of the approaches
> implemented by different operating systems, but I've unfortunately not
> found one.

FWIW, ASLR is just a workaround and has it's weaknesses[1], but is a workar=
ound
I would like to see implemented in FreeBSD, be it ASLR or ASR, until a prop=
er
solution comes along.

[1] https://www.blackhat.com/docs/asia-16/materials/asia-16-Marco-Gisbert-E=
xploiting-Linux-And-PaX-ASLRS-Weaknesses-On-32-And-64-Bit-Systems-wp.pdf

--=20
Best regards,
Domagoj Stolfa

--CE+1k2dSO48ffgeK
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEHQB+y96lmmv+IXofwxT+ikb0YU4FAliH5GwACgkQwxT+ikb0
YU40XQgA1TZkbLeE2G86kM+ke/0B6DsWgvHMNXMljFOSdAF2OZs/sOyHgi5duiZb
f+6giI6T2pxrySELQoIB4/jG/K4SSzhJP+pWNKLWXKwSHfRHE6ye/6Mw2uyWwAKo
a21K/dXR8S5058fi6uZLZmzSX2vglBnBuo2BICBaXm0osseQBmtHb4zVJtfT9YRR
Ra7qxXPUy54oaO/RHJH7YmtezpuoQLQU4l8rnhCTXLdL5iLO5zCSbnKPCqLjmhin
q2ewsVyYY0EyQCXvhoKoXCXyN+trrQE4AsTX3PPiKitgr5M94/yFUnYblUgNXUSo
lH5orvrY3UdnY0bvTEV3FQhIfInttw==
=hHxk
-----END PGP SIGNATURE-----

--CE+1k2dSO48ffgeK--