This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use

From: Kees Cook <kees dot cook at canonical dot com>
To: Ulrich Drepper <drepper at redhat dot com>
Cc: Roland McGrath <roland at redhat dot com>, Andi Kleen <andi at firstfloor dot org>, linux-kernel at vger dot kernel dot org, Jakub Jelinek <jakub at redhat dot com>, libc-alpha at sourceware dot org
Date: Mon, 6 Oct 2008 18:44:29 -0700
Subject: Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
References: <20081001220948.GC32107@sunsite.ms.mff.cuni.cz> <20081001222706.68E7E1544B4@magilla.localdomain> <20081003001616.GN10632@outflux.net> <87ej2untze.fsf@basil.nowhere.org> <20081006175038.GF10357@outflux.net> <20081006192641.GI3180@one.firstfloor.org> <20081006220759.GM10357@outflux.net> <20081006235827.59306154271@magilla.localdomain> <20081007003119.GS10357@outflux.net> <48EAB40C.5010607@redhat.com>

On Mon, Oct 06, 2008 at 05:57:48PM -0700, Ulrich Drepper wrote:
> Kees Cook wrote:
> > It sounds like it's not very safe,
> 
> Then investigate it.

As was suspected, each int is the same.

> > but on the other hand, glibc doesn't really care?
> 
> Of course we care.  Especially for SUID and uid==0 binaries.

I meant based on what was said about "if it's as strong as the ASLR
randomness, it's good enough for this".  While the ultimate solution
would be to bolt a better PRNG into the kernel, is the following good
enough for now for glibc:

$ ./rands
0x2b 0x06 0xb7 0x53 0x2b 0x06 0xb7 0x53 0x2b 0x06 0xb7 0x53 0x2b 0x06 0xb7 0x53
$ ./rands
0xc2 0xb5 0x42 0xdc 0xc2 0xb5 0x42 0xdc 0xc2 0xb5 0x42 0xdc 0xc2 0xb5 0x42 0xdc
$ ./rands
0x5f 0x39 0xc6 0xc0 0x5f 0x39 0xc6 0xc0 0x5f 0x39 0xc6 0xc0 0x5f 0x39 0xc6 0xc0
$ ./rands
0xfb 0x4a 0x82 0xbd 0xfb 0x4a 0x82 0xbd 0xfb 0x4a 0x82 0xbd 0xfb 0x4a 0x82 0xbd

-Kees

-- 
Kees Cook
Ubuntu Security Team

Follow-Ups:
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Ulrich Drepper

References:
- Re: randomized stack protector value
  - From: Jakub Jelinek
- Re: randomized stack protector value
  - From: Roland McGrath
- [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Kees Cook
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Andi Kleen
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Kees Cook
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Andi Kleen
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Kees Cook
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Roland McGrath
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Kees Cook
- Re: [PATCH] ELF: implement AT_RANDOM for future glibc use
  - From: Ulrich Drepper

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]