Re: [kernel-hardening] Re: [PATCH 2/2] mm: restrict access to/proc/meminfo

From: Vasiliy Kulikov
Date: Thu Sep 29 2011 - 13:26:31 EST

Next message: Jeff Layton: "Re: [PATCH 2/4] cifs, freezer: add wait_event_freezekillable andhave cifs use it"
Previous message: Paul E. McKenney: "Re: linux-next-20110923: warning kernel/rcutree.c:1833"
In reply to: Valdis . Kletnieks: "Re: [PATCH 2/2] mm: restrict access to /proc/meminfo"
Next in thread: Vasiliy Kulikov: "Re: [PATCH 2/2] mm: restrict access to /proc/meminfo"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Sep 29, 2011 at 12:57 -0400, Valdis.Kletnieks@xxxxxx wrote:
> But now he has to fly blind for the next 30 because the numbers will display
> exactly the same, and he can't correct for somebody else allocating one so he
> needs to only allocate 29...

You're still talking about "slabinfo", which is already restricted.

And meminfo can be still learned with the same race window (ala seq lock):

prepare_stuff();
fill_slabs(); // Here we know counters with KB granularity
while (number_is_not_ok()) {
prepare_stuff();
fill_slabs();
}
do_exploit();

Thanks,

--
Vasiliy Kulikov
http://www.openwall.com - bringing security into open computing environments
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jeff Layton: "Re: [PATCH 2/4] cifs, freezer: add wait_event_freezekillable andhave cifs use it"
Previous message: Paul E. McKenney: "Re: linux-next-20110923: warning kernel/rcutree.c:1833"
In reply to: Valdis . Kletnieks: "Re: [PATCH 2/2] mm: restrict access to /proc/meminfo"
Next in thread: Vasiliy Kulikov: "Re: [PATCH 2/2] mm: restrict access to /proc/meminfo"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]