[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Rep:Re: Rep:Re: Rep:Re: [f-cpu] TLB right + resume

To: f-cpu@seul.org
Subject: Re: Rep:Re: Rep:Re: Rep:Re: [f-cpu] TLB right + resume
From: Yann Guidon <whygee@f-cpu.org>
Date: Wed, 21 Aug 2002 13:11:29 +0200
Delivered-To: archiver@seul.org
Delivered-To: f-cpu-outgoing@seul.org
Delivered-To: f-cpu@seul.org
Delivery-Date: Wed, 21 Aug 2002 07:01:24 -0400
Organization: http://www.f-cpu.org
References: <200208210809.1561@th00.opsion.fr>
Reply-To: f-cpu@seul.org
Sender: owner-f-cpu@seul.org

hi,

Nicolas Boulay wrote:
> -----Message d'origine-----
> De: Michael Riepe <michael@stud.uni-hannover.de>
> 
> On Tue, Aug 20, 2002 at 09:05:08AM +0000, Nicolas Boulay wrote:
> [...]
> > > 4- diseable any possiblity of buffer overflow.
> >
> > Dto.
> >
> > >>> ??? don't understand that word.
> 
> Sorry... it was supposed to mean "same as above".
> 
> >>> This is the problem number one of the computer security, if it
> became impossible to do it, you see what reputation could have the
> f-cpu...

If there was an easy way to do this, then it would already be used
by everybody.

Unfortunately, everybody sticks with C and the select() exploit
is possible. This could have been avoided by using ADA or JAVA.
Java sux but at least, strongly typed langages are good at avoiding
silly errors like this.

Buffer overflows are another problems and it depends a lot on
the coder and the langage. The CPU can't do much on this matter,
particularly if a (dumb) coder wants to use a (dumb) langage.

I think i'll simply make the TLB user-configurable
until F-CPU rev. 1 is frozen. This way, people could explore
the necessary/useless features. This is the easiest way to solve
the TLB problems because everybody wants something different.

John Graley wrote:
> > From: Michael Riepe [mailto:michael@stud.uni-hannover.de]
<snip>
> > > >>> What you think about the idea of tagged page that could
> > > only be used by tagged read&write instructions (to protect
> > > data page of the kernel and return stack write) ?
> >
> > I'm afraid that will help only if you compile all your
> > binaries yourself (otherwise, they might contain "trojan writes").
> 
> Surely it would be a simple matter in software to search through executables
> looking for the op-codes of illegal instructions before execution?

ever heard about self-modifying codes ?
sure they could be avoided by not allowing WX pages. but this opens
a new domain of vulnerabilities and this would not help against
physical failures.

maybe the solution lies somewhere else, not in the TLBs.

> Cheers, John

WHYGEE
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
*************************************************************
To unsubscribe, send an e-mail to majordomo@seul.org with
unsubscribe f-cpu       in the body. http://f-cpu.seul.org/

References:
- Rep:Re: Rep:Re: Rep:Re: [f-cpu] TLB right + resume
  - From: "Nicolas Boulay" <nicolas.boulay@ifrance.com>

Prev by Date: Rep:RE: Rep:Re: Rep:Re: [f-cpu] TLB right + resume
Next by Date: Rep:Re: Rep:Re: Rep:Re: Rep:Re: [f-cpu] TLB right + resume
Prev by thread: Rep:Re: Rep:Re: Rep:Re: [f-cpu] TLB right + resume
Next by thread: Rep:RE: Rep:Re: Rep:Re: [f-cpu] TLB right + resume
Index(es):
- Date
- Thread