===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/innovations.html,v
retrieving revision 1.67
retrieving revision 1.68
diff -u -r1.67 -r1.68
--- www/innovations.html 2018/07/22 12:24:05 1.67
+++ www/innovations.html 2018/08/13 23:34:47 1.68
@@ -141,9 +141,10 @@
Random-data memory:
- the ability to specify that a variable should be initialized at load
- time with random byte values was implemented in OpenBSD 5.3 by Matthew
- Dempsky.
+ the ability to specify that a variable should be initialized
+ at load time with random byte values (placed into a new ELF
+ .openbsd.randomdata section) was implemented in
+ OpenBSD 5.3 by Matthew Dempsky.
Stack protector per shared object:
@@ -229,6 +230,14 @@
memory (sometimes used in ROP attacks).
Theo de Raadt, April 12, 2018.
+
+ RETGUARD is a replacement for the stack-protector
+ which uses a per-function random cookie (located in the ELF
+ .openbsd.randomdata section to consistency check the
+ return address on the stack. Implemented for AMD64 and ARM64
+ by Todd Mortimer in OpenBSD 6.4.
+
+
Functions
@@ -313,6 +322,10 @@
freezero(3):
Otto Moerbeek, April 10, 2017, OpenBSD 6.2
+
+
+ unveil(2):
+ Theo de Raadt and Bob Beck, July 13, 2018, OpenBSD 6.4