Conversation

Daniel Micay

@DanielMicay

·

Oct 23, 2018

Amazon EC2 exposes Memory Protection Keys and uses Skylake-SP Xeons for t3.nano and above so I'll be testing the initial implementation of metadata hardening via MPK on EC2. It wasn't exposed in Google Cloud Engine VMs despite compatible processors.

Quote Tweet

Daniel Micay

@DanielMicay

·

Oct 20, 2018

I'm working on integrating Memory Protection Keys (https://lwn.net/Articles/643797/…) into my hardened allocator for protecting the metadata. Unfortunately, I can't verify it works and has low enough overhead until I get access to a Skylake-SP CPU so it will be stuck in a separate branch.

Show this thread

1

1

5

Daniel Micay

@DanielMicay

·

Oct 23, 2018

Initial messy implementation of the feature appears to work well: https://github.com/AndroidHardening/hardened_malloc/commit/6a9c36e03b9e2efe281e220896f5b94899e62d95… A protection key is assigned to the read/write portions of the allocator metadata region. Access is enabled for the thread when entering the allocator code and disabled before returning.

1

1

5

Daniel Micay

@DanielMicay

All of the writable allocator state is easily covered by this. The only other state is in the global ro data structure which is made permanently read-only after initialization. I'll need to figure out how well it performs (seems quite cheap). It's definitely easy to use MPK.

2:56 AM · Oct 23, 2018·Twitter Web Client

1

Like

Jiliac

@Jilyac

·

Oct 23, 2018

Replying to

@DanielMicay

You work quite fast. I wish I had your productivity.