From owner-freebsd-arch@FreeBSD.ORG Wed Jul 23 23:38:05 2014 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id AF58A87B for ; Wed, 23 Jul 2014 23:38:05 +0000 (UTC) Received: from nm23-vm1.bullet.mail.bf1.yahoo.com (nm23-vm1.bullet.mail.bf1.yahoo.com [98.139.213.141]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5D85527DC for ; Wed, 23 Jul 2014 23:38:05 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1406158683; bh=OrE8zvFiB+ShNHteaNeu+gIxKMqC/B928hgbIhwPEjw=; h=Received:Received:Received:X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Content-Type:Mime-Version:Subject:From:In-Reply-To:Date:Cc:Message-Id:References:To:X-Mailer; b=lD0Ul6vV+S/VNDfE1LuDJUpl0doZUyzdrew9JzDE2EBlAJDibZSB5pEy/DVB8Hcl/m9wW8yCBJCMjIPLo+1hgTwRj1scSP+NdzWqwG+7Z0B/RSU8mzEwAP4C1s617mJXJ6vXfR651hslnWYf0cToTzTQruS467FtjAGLZhg3szZ/8z6piD4aj1XoWR3ED+h2VRvOLZZcpGallr/WBy9b2TDMce3ygN6/JC/lQgLKsXxFWdY3v1VqpS8nVPB64ZaIAep8QmG2YrNwDinnzzB/3/ON+1wBOVdgte3qWlyRDgRLaiHseTbK5CCM+NCW/ZzhwkiFsYYHiFJg5bMJZP8+9A== DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s2048; d=yahoo.com; b=Zl7e2q0Wbw+Uee9XvsTUUG6A0fcJmMW3oyTDIxrh9KV1dFfE/YIdeswyen9MQO/NANrs+NJsbGm2C1RgL/8J4/nFuhCm+y9GZCupKt3jwzg2rleMxWcXDL0BE+RDyi09jC+YzleW0u5KmKsBS0y/m3DM1ESdB2fzFcDKKBDN71IXGNvzJvvDGT3u9sNGv6UEu9t2GjsAP9+dYaCMTfVig7RXXFsT4Ko5xI77Ho0KNSF3It0ifGgk22AxtUrE8CisZidHB2U9kNwkeO+YitP/QlqXIhfvwzQ5MTEi7l5yn3FCoUcN0AT7SItoZmugSSPrPQW0QKuWzkH2M2eSANCI9Q==; Received: from [66.196.81.174] by nm23.bullet.mail.bf1.yahoo.com with NNFMP; 23 Jul 2014 23:38:03 -0000 Received: from [68.142.230.64] by tm20.bullet.mail.bf1.yahoo.com with NNFMP; 23 Jul 2014 23:38:02 -0000 Received: from [127.0.0.1] by smtp221.mail.bf1.yahoo.com with NNFMP; 23 Jul 2014 23:38:02 -0000 X-Yahoo-Newman-Id: 639167.85326.bm@smtp221.mail.bf1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: CdyOcVYVM1lynDnkPIcmc5aEQu3Kr4Fm6g.rqEQ7uYcSbPG nUv5m.avfECfF4PJ31xdk5iVFfwDU9FS1t0fBL3jG37sHLyJrzSGZcBB8.7L 6rr_.9DqCGcmn_s2A2d5PR5mpy5KVffAd1mu45ZxNXR7bSmaDWg3SbwHBeAy HpUOB.qex1otsrPwjAVU1yhlg3OfVw5HW4M4MnzgjuPfjsxW1bYfs1zdfLR3 33DqKEgxC0cZ9CdJDq.K2Ls5CZBTcK8XhN8jqQ6UCUS3Per6uo4qdZerNhgN ResIL1dHMHUE3B9cjNvmH5s6ck3uDRcZSBXk1Phshqz59DLgupJwZq7JRUxa Jt9iCvkfL5oakn2TpOF.cRlxFIVgp0nKj7YMnEMUd8b8kej9pZPb_FkTsPxf fiNaVDdMWhj3I.0TOQsV4aLhmN5MaPZ83jh9DahMsYawCKbbo0JjYclWRDXJ gPd3f7Eu4qFr0oUgG5wz3wtRIwWAERhpi6gI8XdG__nG7Be.OCP9cYA86vFX dlVL4aDM_KVJc5FtpvYyZzJHcEKGTAQ8Mg54v2CoTgtKT.SSzUK_zw4vWpaN 4n5DAICg3rZF9Hp9xLtaoFpSahTwg4D6KH5nE.NMAvwf5kMplnJ8RQiXQNQF FKrzPFk9tD2Avk5GvQwI_cL8ki97UVyI- X-Yahoo-SMTP: xcjD0guswBAZaPPIbxpWwLcp9Unf Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\)) Subject: Re: [RFC] ASLR Whitepaper and Candidate Final Patch From: Pedro Giffuni In-Reply-To: <20140723004543.GH29618@pwnie.vrt.sourcefire.com> Date: Wed, 23 Jul 2014 18:37:57 -0500 Message-Id: References: <96C72773-3239-427E-A90B-D05FF0F5B782@freebsd.org> <20140720201858.GB29618@pwnie.vrt.sourcefire.com> <20140723004543.GH29618@pwnie.vrt.sourcefire.com> To: Shawn Webb X-Mailer: Apple Mail (2.1878.6) Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18 Cc: PaX Team , Oliver Pinter , Robert Watson , Bryan Drewery , freebsd-arch@freebsd.org X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Jul 2014 23:38:05 -0000 Hi; Il giorno 22/lug/2014, alle ore 19:45, Shawn Webb ha = scritto: >>> ... >>=20 >> Hi Shawn: >>=20 >> Great news that this work is coming to fruition -- ASLR is long = overdue. >>=20 >> Are you having any luck with performance measurements? Unixbench = seems like a=20 >> good starting point, but I wonder if it would be useful to look, in=20= >> particular, at memory-mapping intensive workloads that might be = affected as a=20 >> result of changes in kernel VM data-structure use, or greater = fragmentation of=20 >> the address space. I'm not sure I have a specific application here = in mind --=20 >> in the past I might have pointed out tools such as ElectricFence that = tend to=20 >> increase fragmentation themselves. >=20 > The unixbench tests on that laptop have finished. However, I've been > fighting a pesky migraine these last couple days, so I haven't had the > opportunity to aggregate the results into a nice little spreadsheet. = I'm > hoping to finish it up by the end of the week. >=20 > I'll take a look at ElectricFence this weekend. Additionally, I have a > netbook somewhere. Once I find it and its power cord, I'll install > FreeBSD/x86 and re-run the same tests on that. >=20 Somewhat related to ElectricFence=85 will ASLR have an adverse effect on = debuggers? I googled around and got to this: http://www.outflux.net/blog/archives/2010/07/03/gdb-turns-off-aslr/ So I guess we may have to patch gdb (and lldb)? Pedro.