User: Password:
Subscribe / Log in / New account

Randomizing the kernel

Randomizing the kernel

Posted Apr 18, 2013 12:56 UTC (Thu) by heijo (guest, #88363)
Parent article: Randomizing the kernel

Why not compile with one function and one global variable per section, keep section-based relocations in the kernel image, and then randomly shuffle the sections at boot?

That would only have a slight boot time and kernel image size overhead, both of which are irrelevant for servers, and probably not an issue anywhere else.

This way, guessing would be impossible, and any "leaks" would not give any information on the location of other functions or data other than the "leaked" one.

(Log in to post comments)

Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds