CVSROOT: /cvs
Module name: www
Changes by: dera...@cvs.openbsd.org 2023/01/10 19:00:33
Modified files:
. : innovations.html
Log message:
mortimer has changed amd64 system call stubs in libc, main programs,
and ld.so so they are now also protected by retguard (this was already
the case on arm64). They are hard to find because of aslr and
libc.so/ld.so relinking, but now ROP-code will have a harder time
preloading system call arguments and jumping to the syscall
instructions in the stub, because (except for execve(2)) upon return
the code drops into the retguard epilogue and sadly then you die.
