Fork us on GitHub Follow us on Facebook Follow us on Twitter

Opened 2 years ago

Closed 2 years ago

Last modified 19 months ago

#736 closed defect (fixed)

Kernel leaks parent thread's context to children

Reported by: Jiří Zárevúcky Owned by: Jakub Jermář
Priority: blocker Milestone: 0.8.0
Component: helenos/kernel/generic Version: mainline
Keywords: Cc:
Blocker for: Depends on:
See also:

Description

When creating a new thread, the kernel uses context_save() followed by context_set() to create the new thread's context. This results in the child thread inheriting a significant portion of the parent's context, including between different tasks, and from kernel to userspace.

Beyond the obvious security implications, having garbage in registers makes it harder to pass meaningful arguments from loader to the loaded program.

Change History (2)

comment:1 Changed 2 years ago by Jakub Jermář

Resolution: fixed
Status: assignedclosed

comment:2 Changed 19 months ago by Jakub Jermář

Milestone: 0.8.0
Note: See TracTickets for help on using tickets.