25. June 2024 #1915
dimakuv
started this conversation in
Meeting notes
25. June 2024
#1915
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Agenda
(please write your proposed agenda items in comments under this discussion)
Dmitrii/Mona: Stack overflows in non-EDMM cases are silent and hard to debug
Osho: the documentation fix was the agreed-upon solution from previous week's meeting.
Anjo: need to have a guard page for Gramine internal stacks anyway (unrelated issue, but still need to fix).
Dmitrii: my proposed solution has bad security, main thread's stack is not randomized, negating ASLR benefits.
Osho/Dmitrii: Golang apps (pretty sure) immediately switch the first provided-by-kernel stack to their own allocated stack. Google Chrome does it as well. Python probably not. So at least some language runtimes/frameworks won't benefit at all from Dmitrii's proposal.
Mona: go with a documentation update, as agreed in the previous meeting (#1906).
Osho: maybe create a new Docs page "Known problems", and start with this particular issue
Dmitrii: Update ciphersuite used for securing pipe/UDS connections
Dmitrii explained the problem. However, in the meantime, the original problem was resolved (it was misunderstanding from Dmitrii's side). Read these threads:
Beta Was this translation helpful? Give feedback.
All reactions