artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1b679b9) | patch
Disable codepatching infrastructure after boot
authorsf <sf@openbsd.org>
Fri, 13 Jul 2018 08:30:34 +0000 (08:30 +0000)
committersf <sf@openbsd.org>
Fri, 13 Jul 2018 08:30:34 +0000 (08:30 +0000)
commit5f6ecb1939a610ea2cc43585708e659fc0834e52
treea8be7fe09271318b5489abcd5838f39f756e3f48tree | snapshot
parent1b679b9b306484cbb0dd7005eff2ecf870a8f88dcommit | diff
Disable codepatching infrastructure after boot

This way, it is not available for use in ROP attacks.  This diff puts the
codepatching code into a separate section and unmaps that section after boot.
In the future, the memory could potentially be reused but that would require
larger changes.

ok pguenther@
sys/arch/amd64/amd64/codepatch.c diff | blob | history
sys/arch/amd64/amd64/mainbus.c diff | blob | history
sys/arch/amd64/conf/ld.script diff | blob | history
sys/arch/amd64/include/codepatch.h diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim