#736 closed defect (fixed)
Kernel leaks parent thread's context to children
Reported by: | Jiří Zárevúcky | Owned by: | Jakub Jermář |
---|---|---|---|
Priority: | blocker | Milestone: | 0.8.0 |
Component: | helenos/kernel/generic | Version: | mainline |
Keywords: | Cc: | ||
Blocker for: | Depends on: | ||
See also: |
Description
When creating a new thread, the kernel uses context_save()
followed by context_set()
to create the new thread's context. This results in the child thread inheriting a significant portion of the parent's context, including between different tasks, and from kernel to userspace.
Beyond the obvious security implications, having garbage in registers makes it harder to pass meaningful arguments from loader to the loaded program.
Change History (2)
comment:1 by , 6 years ago
Resolution: | → fixed |
---|---|
Status: | assigned → closed |
comment:2 by , 6 years ago
Milestone: | → 0.8.0 |
---|
Note:
See TracTickets
for help on using tickets.
Fixed in edc64c03b91257aecae0d60886bd274aea300bf9.