[U-Boot] Does U-boot support ASLR?
Jason Markley (ggsg)
jamarkle at ggsg.cisco.com
Thu Feb 9 21:54:01 CET 2012
On 2/9/12 3:34 PM, Mike Frysinger wrote:
> On Thursday 09 February 2012 15:06:48 Scott Wood wrote:
>> As for tftpload not having length bounds, that's the kind of thing that
>> anyone trying to put together a secure loader would want to fix
>> (assuming they're using tftpload in the first place)
> which is my point -- u-boot is so completely opening, throwing ASLR in there
> makes no sense. there are plenty of ways to break the system.
There are plenty of ways to break any system. Isn't the whole idea of
security that you simply make it harder for particular attack vectors to
be fruitful? You're not going to be able to prevent EVERY attack, so
should we just not bother with security at all?
>
>> but if such a hole
>> gets through, perhaps ASLR might make it more difficult to use that
>> length overrun to take control of the system (versus simply crash it).
> if you can overwrite any of u-boot, then i doubt this is that hard. this is
> what NOP slides are very good at.
>
>>>> It probably doesn't make sense as default behavior, but I could see it
>>>> being useful in some situations.
>>> such as ?
>> When you can solve issues such as entropy generation, and are limiting
>> external exposure to interfaces that should be secure (but might have
>> bugs). I can especially see people wanting this who are using hardware
>> secure boot mechanisms (i.e. U-Boot itself was cryptographically verified).
> this isn't an example of how ASLR would be useful
Isn't ASLR useful in the sense that it does what ASLR was created to
do? make it 'harder' (not impossible, but another layer of difficulty)
for attacking code to determine where particular code lives?
Are you arguing that ASLR isn't useful for anything at all? Or just
useful for U-boot? If anything at all, why is it implemented in so many
other places? If just U-boot, isn't plugging one small hole, even
though larger holes exist still making progress?
-Jason
> -mike
>
>
> _______________________________________________
> U-Boot mailing list
> U-Boot at lists.denx.de
> http://lists.denx.de/mailman/listinfo/u-boot
>
More information about the U-Boot
mailing list