Re: [RFC PATCH v2 0/2] Randomization of address chosen by mmap.
From: Theodore Y. Ts'o
Date: Tue Mar 27 2018 - 18:16:59 EST
On Tue, Mar 27, 2018 at 04:51:08PM +0300, Ilya Smith wrote:
> > /dev/[u]random is not sufficient?
>
> Using /dev/[u]random makes 3 syscalls - open, read, close. This is a performance
> issue.
You may want to take a look at the getrandom(2) system call, which is
the recommended way getting secure random numbers from the kernel.
> > Well, I am pretty sure userspace can implement proper free ranges
> > trackingâ
>
> I think we need to know what libc developers will say on implementing ASLR in
> user-mode. I am pretty sure they will say ânetherâ or âsome-dayâ. And problem
> of ASLR will stay forever.
Why can't you send patches to the libc developers?
Regards,
- Ted