Re: [kernel-hardening] [PATCH] use get_random_long for the per-task stack canary

From: Kees Cook
Date: Thu May 04 2017 - 10:32:55 EST

Next message: Rafael J. Wysocki: "Re: [PATCH 3/5] ACPI / sleep: EC-based wakeup from suspend-to-idle on Dell systems"
Previous message: Maxime Ripard: "Re: [PATCH v2 08/10] clk: sunxi-ng: support R40 SoC"
In reply to: Rik van Riel: "Re: [kernel-hardening] [PATCH] use get_random_long for the per-task stack canary"
Next in thread: tip-bot for Daniel Micay: "[tip:core/urgent] stackprotector: Increase the per-task stack canary's random range from 32 bits to 64 bits on 64-bit platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, May 4, 2017 at 7:04 AM, Rik van Riel <riel@xxxxxxxxxx> wrote:
> On Thu, 2017-05-04 at 09:32 -0400, Daniel Micay wrote:
>> The stack canary is an unsigned long and should be fully initialized
>> to
>> random data rather than only 32 bits of random data.
>>
>> Cc: stable@xxxxxxxxxxxxxxx
>> Signed-off-by: Daniel Micay <danielmicay@xxxxxxxxx>
>>
> Acked-by: Rik van Riel <riel@xxxxxxxxxx>

Thanks! Ingo, should this go via tip?

Acked-by: Kees Cook <keescook@xxxxxxxxxxxx>

-Kees

--
Kees Cook
Pixel Security

Next message: Rafael J. Wysocki: "Re: [PATCH 3/5] ACPI / sleep: EC-based wakeup from suspend-to-idle on Dell systems"
Previous message: Maxime Ripard: "Re: [PATCH v2 08/10] clk: sunxi-ng: support R40 SoC"
In reply to: Rik van Riel: "Re: [kernel-hardening] [PATCH] use get_random_long for the per-task stack canary"
Next in thread: tip-bot for Daniel Micay: "[tip:core/urgent] stackprotector: Increase the per-task stack canary's random range from 32 bits to 64 bits on 64-bit platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]