artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 22c1e09) | patch
Dynamically link these /sbin daemons: dhcpleased, mountd, nfsd, pflogd,
authorderaadt <deraadt@openbsd.org>
Mon, 29 Aug 2022 17:00:29 +0000 (17:00 +0000)
committerderaadt <deraadt@openbsd.org>
Mon, 29 Aug 2022 17:00:29 +0000 (17:00 +0000)
commit46ebbf2976b9dd98555d30548b26b344684126e3
treed7123bf53afee01022fb4144a42bf2c7c2c85dd1tree | snapshot
parent22c1e09064b1e80904e60b6dae4e97e7b6676b39commit | diff
Dynamically link these /sbin daemons: dhcpleased, mountd, nfsd, pflogd,
resolvd, slaacd, unwind.
The mitigation story is way better: syscalls are in a randomly located
libc, and every syscall stub is randomly located inside that due to
random relinking.  As opposed to fixed offset inside a release binary.
There is one known consequence: /usr nfs mounting must use statically
configured IP addresses.
ok kettenis florian, others
sbin/dhcpleased/Makefile diff | blob | history
sbin/mountd/Makefile diff | blob | history
sbin/nfsd/Makefile diff | blob | history
sbin/pflogd/Makefile diff | blob | history
sbin/resolvd/Makefile diff | blob | history
sbin/slaacd/Makefile diff | blob | history
sbin/unwind/Makefile diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim