[U-Boot] Does U-boot support ASLR?
Graeme Russ
graeme.russ at gmail.com
Thu Feb 9 23:16:23 CET 2012
Hi Guys,
My 2c worth...
The thought of applying ASLR to improve security is pointless unless you
have identified a reason to do so. You can't just apply a security
hardening technique willy-nilly and expect you security to improve. The
security of a system is equal to the weakest link and no amount of
strengthening the other links will improve security
Remember, U-Boot is a boot-loader. It is very transitory. Think about how
an attacker could exploit U-Boot (Hint: 10s after booting, they can't)
Network: Hit it with IP packets - But U-Boot only activates network code
on as as-needed basis (typically when someone runs a net command like tftp
etc) so you already have U-Boot shell access anyway
Serial: Buffer overruns on commands - U-Boot will crash and the board
reboots and again, you probably already had/have shell access
So it starts to boil down to protecting access to the shell - Access to
the shell opens up all sorts of possibilities such as changing environment
variables (including scripts) up to completely replacing the U-Boot image
So my thought would be, if you want to improve U-Boot security, perhaps
implement password protection on the shell
Regards,
Graeme
More information about the U-Boot
mailing list