This is the mail archive of the
mailing list for the glibc project.
Re: randomized stack protector value
On Wed, Oct 01, 2008 at 02:56:57PM -0700, Kees Cook wrote:
> On Wed, Oct 01, 2008 at 02:47:02PM -0700, Ulrich Drepper wrote:
> > Kees Cook wrote:
> > > What would be needed to help get this approved?
> > The patch will never be in cvs, it's a hack.
> Heh. I realize it's not in cvs for a reason, but I was hoping to start
> a discussion on how to best solve the need it addresses, in a way that
> would be acceptable to the glibc maintainers.
The right solution is that the kernel provides a couple of random words
in the auxiliary vectors. Some kernel folks know about this for quite some
time, but it hasn't been added yet. If kernel provides it, upstream
glibc will most definitely use it.