-
Notifications
You must be signed in to change notification settings - Fork 29
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ASLR: PoC for generating random address before Uhyve launches #711
Commits on Jun 15, 2024
-
ASLR: Increase KERNEL_STACK_SIZE to 0x20000
The previous value, 0x8000, caused problems. The minimum value required for relocatable images to load (starting from NULL) is 0x13000. For additional buffer, the temporary hack here is to increase that said value.
Configuration menu - View commit details
-
Copy full SHA for f2ccd9f - Browse repository at this point
Copy the full SHA f2ccd9fView commit details -
ASLR: Introduce START_ADDRESS_OFFSET variable
Will be utilized later.
Configuration menu - View commit details
-
Copy full SHA for e44672d - Browse repository at this point
Copy the full SHA e44672dView commit details -
Configuration menu - View commit details
-
Copy full SHA for f8e99e4 - Browse repository at this point
Copy the full SHA f8e99e4View commit details -
ASLR: Flesh things out a bit more, add TODOs
- Introduce end_address_upper_bound. - Add mask. - Some additional investigation and testing is necessary. - Right now, it feels like the mask just works because of a magic spell called "Works on my machine.". I didn't get creative with the spell name (which does not exist), because I don't know how spells sound like. Sorrry. - Some architecture-specific work may be needed. - Some fine-tuning and debugging information for ASLR is necessary.
Configuration menu - View commit details
-
Copy full SHA for fd9a984 - Browse repository at this point
Copy the full SHA fd9a984View commit details -
Configuration menu - View commit details
-
Copy full SHA for be472f7 - Browse repository at this point
Copy the full SHA be472f7View commit details -
ASLR: Stop using dumb values for the mask
- Some sleep is required. - Some bitwise arithmetic was avoided. - Why over-engineer a literal mask value? - I should take a break.
Configuration menu - View commit details
-
Copy full SHA for 705e6e8 - Browse repository at this point
Copy the full SHA 705e6e8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 67528e5 - Browse repository at this point
Copy the full SHA 67528e5View commit details -
Configuration menu - View commit details
-
Copy full SHA for 842982a - Browse repository at this point
Copy the full SHA 842982aView commit details
Commits on Jun 16, 2024
-
ASLR: Distinguish relocatable objects, improve upper bound?
There is something wrong going on here in this current revision. Not sure why.
Configuration menu - View commit details
-
Copy full SHA for fe8cefa - Browse repository at this point
Copy the full SHA fe8cefaView commit details -
Configuration menu - View commit details
-
Copy full SHA for 30e578f - Browse repository at this point
Copy the full SHA 30e578fView commit details
Commits on Jun 17, 2024
-
Configuration menu - View commit details
-
Copy full SHA for b26ab26 - Browse repository at this point
Copy the full SHA b26ab26View commit details -
- It's #[cfg(not(feature = aslr))], not #[not(cfg(feature = aslr))]. - Some additional typo-induced bug was fixed. .-.
Configuration menu - View commit details
-
Copy full SHA for cecd8f8 - Browse repository at this point
Copy the full SHA cecd8f8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6eb3a18 - Browse repository at this point
Copy the full SHA 6eb3a18View commit details -
ASLR: Set self.aslr_status to True later
We should probably tell Uhyve that it is enabled once we are sure that nothing has gone wrong. What we should do when something goes wrong (can anything go wrong?) is an open question.
Configuration menu - View commit details
-
Copy full SHA for 1b61351 - Browse repository at this point
Copy the full SHA 1b61351View commit details