Re: hardened memory allocate port to linux-fedora system for secutiry

2022-09-06 Thread Siddhesh Poyarekar
On Sat, Aug 27, 2022 at 9:14 AM Carlos O'Donell wrote: > (2) Switching the default vs. improving the default. > A third option (or maybe it's an improvement to the default?), since the choice of allocators seems to come up consistently, could be to consider seriously (and is likely not a trivial

Re: hardened memory allocate port to linux-fedora system for secutiry

2022-08-30 Thread Timothée Ravier
I think that the first steps here would be to: - package it in Fedora - write a documentation page on how to use it (the quick docs may be a good place: https://docs.fedoraproject.org/en-US/quick-docs/) - do a lot of testing and benchmarks to get memory and performance numbers for each major Fedo

Re: hardened memory allocate port to linux-fedora system for secutiry

2022-08-29 Thread Daniel Micay via devel
On Mon, Aug 15, 2022 at 07:39:46PM -0700, John Reiser wrote: > On 8/13/22, Demi Marie Obenour wrote: > > On 8/13/22, Kevin Kofler via devel wrote: > > > martin luther wrote: > > > > should we implement https://github.com/GrapheneOS/hardened_malloc/ > > > > it is hardened memory allocate it will inc

Re: hardened memory allocate port to linux-fedora system for secutiry

2022-08-27 Thread Carlos O'Donell
On 8/26/22 12:22, Daniel Micay via devel wrote: > Also, you hardened_malloc doesn't use a thread cache for security > reasons. It invalidates many of the security properties. If you compare > to glibc malloc in the light configuration with tcache disabled in glibc > malloc it will compare well, and

Re: hardened memory allocate port to linux-fedora system for secutiry

2022-08-26 Thread Daniel Micay via devel
On Mon, Aug 15, 2022 at 07:39:46PM -0700, John Reiser wrote: > On 8/13/22, Demi Marie Obenour wrote: > > On 8/13/22, Kevin Kofler via devel wrote: > > > martin luther wrote: > > > > should we implement https://github.com/GrapheneOS/hardened_malloc/ > > > > it is hardened memory allocate it will inc

Re: hardened memory allocate port to linux-fedora system for secutiry

2022-08-13 Thread Demi Marie Obenour
On 8/13/22 08:04, Kevin Kofler via devel wrote: > martin luther wrote: >> should we implement https://github.com/GrapheneOS/hardened_malloc/ >> it is hardened memory allocate it will increase the security of fedora >> according to the graphene os team it can be ported to linux as well need >> to lo

Re: hardened memory allocate port to linux-fedora system for secutiry

2022-08-13 Thread Kevin Kofler via devel
martin luther wrote: > should we implement https://github.com/GrapheneOS/hardened_malloc/ > it is hardened memory allocate it will increase the security of fedora > according to the graphene os team it can be ported to linux as well need > to look at it There are several questions that come up: *

hardened memory allocate port to linux-fedora system for secutiry

2022-08-13 Thread martin luther
should we implement https://github.com/GrapheneOS/hardened_malloc/ it is hardened memory allocate it will increase the security of fedora according to the graphene os team it can be ported to linux as well need to look at it ___ devel mailing list -- dev