From: Jeff Dike <jdike@addtoit.com>
To: user-mode-linux-devel@lists.sourceforge.net
Cc: Blaisorblade <blaisorblade_spam@yahoo.it>
Subject: [uml-devel] skas mode on a non-skas host
Date: Mon, 29 Nov 2004 17:50:32 -0500 [thread overview]
Message-ID: <200411292250.iATMoWOF004837@ccure.user-mode-linux.org> (raw)
Prompted by some questions from Blaisorblade about whether something like skas
mode might be implemented on unpatched hosts, I went ahead and did exactly
that.
The basic idea is that in place of /proc/mm and PTRACE_FAULTINFO, we have a
couple of extra pages in the userspace process to hold code that we are going
to use to make it change its address space and to handle segfaults so addresses
and access modes can be reported back to the kernel process.
The end result is something that is very close to skas mode, just as secure,
loses two pages of address space to UML rather than .5G, should be almost
as fast, and runs on a stock host kernel.
The patch is available as skas0 from my patches page -
http://user-mode-linux.sourceforge.net/patches.html
and there is a good deal of commentary associated with it.
Jeff
-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://productguide.itmanagersjournal.com/
_______________________________________________
User-mode-linux-devel mailing list
User-mode-linux-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/user-mode-linux-devel
next reply other threads:[~2004-11-29 20:35 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-11-29 22:50 Jeff Dike [this message]
[not found] ` <Pine.LNX.4.58.0411291623340.5077@sparrow>
2004-11-30 16:10 ` [uml-devel] skas mode on a non-skas host Blaisorblade
2004-11-30 17:20 ` Gerd Knorr
[not found] ` <200411301912.21155.blaisorblade_spam@yahoo.it>
[not found] ` <41ACB90C.7070209@fujitsu-siemens.com>
2004-11-30 19:02 ` Skas0 security problems (was: Re: [uml-devel] skas mode on a non-skas host) Blaisorblade
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=200411292250.iATMoWOF004837@ccure.user-mode-linux.org \
--to=jdike@addtoit.com \
--cc=blaisorblade_spam@yahoo.it \
--cc=user-mode-linux-devel@lists.sourceforge.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.