Re: [RFC PATCH v2 0/2] Randomization of address chosen by mmap.
From: Ilya Smith
Date: Wed Mar 28 2018 - 14:48:36 EST
> On 28 Mar 2018, at 01:16, Theodore Y. Ts'o <tytso@xxxxxxx> wrote:
>
> On Tue, Mar 27, 2018 at 04:51:08PM +0300, Ilya Smith wrote:
>>> /dev/[u]random is not sufficient?
>>
>> Using /dev/[u]random makes 3 syscalls - open, read, close. This is a performance
>> issue.
>
> You may want to take a look at the getrandom(2) system call, which is
> the recommended way getting secure random numbers from the kernel.
>
>>> Well, I am pretty sure userspace can implement proper free ranges
>>> trackingâ
>>
>> I think we need to know what libc developers will say on implementing ASLR in
>> user-mode. I am pretty sure they will say ânetherâ or âsome-dayâ. And problem
>> of ASLR will stay forever.
>
> Why can't you send patches to the libc developers?
>
> Regards,
>
> - Ted
I still believe the issue is on kernel side, not in library.
Best regards,
Ilya