Originally posted by starshipeleven
View Post
When you are doing a modification to core of Linux kernel you are meant to seriously consider if it a generic alteration or a architecture particular alteration. Yes for years grsecurity team has taken the lazy way out and skipped doing this. It is one of the big differences with
Originally posted by starshipeleven
View Post
So that was a fault that should have been sent mainline.
This particular one has been fixed already in grsecurity the same way since August of 2012
The developer is very clear that the grsecurity patch set contained the exact same patch since 2012. He was upset that someone implemented the same thing and took credit. Its call parallel development. The one that took credit mainline never looked at grsecurity. So if he wants credit all the time for those little things better submit it mainline or live with miss out of credit.
The way to beat kernel KASLR is exploit information leaks. The reality is not that mainline Linux kernel KASLR is defective yes as of 4.12 its going to be default on x86 kernels under Linux with other to follow.
This is the paper grsecurity author references but does not provide link. PAX KASLR is just a weak to the attack as what mainline KASLR is. Also he goes on to claim that KASLR is worthless under arm64 even that it has been documented to block particular classes of bugs on Arm64. So this is more hey we have not managed to-do that so we will call it pointless instead of admitting they were beaten to the punch.
KASLR weakness is if kernel memory information leaks the randomisation can be decoded and attack made functional.
Originally posted by starshipeleven
View Post
Originally posted by starshipeleven
View Post
The reality is grsecuirty has been attempting to put up a tent on quicksand. Lot of mainline work is required to make the kernel core stable to build on top of. The Linux kernel has been security quicksand and grsecurity guys have been fooling themselves and others that they could in fact fix it without doing the mainline work.
Comment