version 1.67, 2018/07/22 12:24:05 |
version 1.68, 2018/08/13 23:34:47 |
|
|
</li> |
</li> |
<li> |
<li> |
<strong>Random-data memory</strong>: |
<strong>Random-data memory</strong>: |
the ability to specify that a variable should be initialized at load |
the ability to specify that a variable should be initialized |
time with random byte values was implemented in OpenBSD 5.3 by Matthew |
at load time with random byte values (placed into a new ELF |
Dempsky. |
<b>.openbsd.randomdata</b> section) was implemented in |
|
OpenBSD 5.3 by Matthew Dempsky. |
</li> |
</li> |
<li> |
<li> |
<strong>Stack protector per shared object</strong>: |
<strong>Stack protector per shared object</strong>: |
|
|
memory (sometimes used in ROP attacks). |
memory (sometimes used in ROP attacks). |
Theo de Raadt, April 12, 2018. |
Theo de Raadt, April 12, 2018. |
</li> |
</li> |
|
<li> |
|
<b>RETGUARD</b> is a replacement for the <b>stack-protector</b> |
|
which uses a per-function random cookie (located in the ELF |
|
<b>.openbsd.randomdata</b> section to consistency check the |
|
return address on the stack. Implemented for AMD64 and ARM64 |
|
by Todd Mortimer in OpenBSD 6.4. |
|
</li> |
|
|
</ul> |
</ul> |
|
|
<h3>Functions</h3> |
<h3>Functions</h3> |
|
|
<li> |
<li> |
<a href="https://man.openbsd.org/freezero.3">freezero(3)</a>: |
<a href="https://man.openbsd.org/freezero.3">freezero(3)</a>: |
Otto Moerbeek, April 10, 2017, OpenBSD 6.2 |
Otto Moerbeek, April 10, 2017, OpenBSD 6.2 |
|
</li> |
|
<li> |
|
<a href="https://man.openbsd.org/unveil.2">unveil(2)</a>: |
|
Theo de Raadt and Bob Beck, July 13, 2018, OpenBSD 6.4 |
</li> |
</li> |
</ul> |
</ul> |
|
|