From owner-freebsd-hackers  Sat Jan 25 11: 0:23 2003
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2D89937B401
	for <freebsd-hackers@FreeBSD.org>; Sat, 25 Jan 2003 11:00:22 -0800 (PST)
Received: from web13402.mail.yahoo.com (web13402.mail.yahoo.com [216.136.175.60])
	by mx1.FreeBSD.org (Postfix) with SMTP id CA7EA43F1E
	for <freebsd-hackers@FreeBSD.org>; Sat, 25 Jan 2003 11:00:21 -0800 (PST)
	(envelope-from giffunip@yahoo.com)
Message-ID: <20030125190021.80728.qmail@web13402.mail.yahoo.com>
Received: from [200.24.79.46] by web13402.mail.yahoo.com via HTTP; Sat, 25 Jan 2003 20:00:21 CET
Date: Sat, 25 Jan 2003 20:00:21 +0100 (CET)
From: "=?iso-8859-1?q?Pedro=20F.=20Giffuni?=" <giffunip@yahoo.com>
Subject: idea from NetBSD: signal trampoline on libc ?
To: freebsd-hackers@FreeBSD.org
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

Hi;

I was reading an interview about IRIX binary
compatibility on NetBSD, and it looks like they
learned a few tricks.

This article gets into their native implementation of
signals:
     
http://www.onlamp.com/pub/a/bsd/2002/10/10/irix.html

At the end of the article Emmanuel Dreyfus mentions:

"One other interesting thing to note is that since
that code was written, Jason Thorpe implemented signal
trampolines provided by libc for NetBSD native
processes, thus adopting the same scheme IRIX used.
The libc provided signal trampoline was adopted in
NetBSD because it removes the need to execute code on
the stack. Memory pages mapped on the stack can
therefore be made non executable (the Memory
Management Unit of all modern CPU are able to enforce
such rules), and we are able to fix a whole class of
security problems. With a non executable stack, it is
not possible anymore to exploit a buffer overflow on a
local variable by executing some user-supplied code
stored on the stack."

A drastic change that maybe we should consider?

cheers,

    Pedro.


______________________________________________________________________
Yahoo! Cellulari: loghi, suonerie, picture message per il tuo telefonino
http://it.yahoo.com/mail_it/foot/?http://it.mobile.yahoo.com/index2002.html

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message