Include SelfRando patches into our hardened builds

added GeorgKoppen201605 TorBrowserTeam201605 component::applications/tor browser owner::gk priority::medium resolution::fixed severity::normal status::closed tbb-hardened tbb-security type::enhancement labels

Trac:
Description: The folks behind the Readactor and Readactor++ paper have developed patches for better resistance against code reuse attacks. This tickets tracks their inclusion bot into tor-browser and tor-browser-bundle.

to

The folks behind the Readactor and Readactor++ paper have developed patches for better resistance against code reuse attacks. This ticket tracks their inclusion both into tor-browser and tor-browser-bundle.

Trac:
Keywords: N/A deleted, tbb-hardening added

Trac:
Keywords: TorBrowserTeam201510 deleted, TorBrowserTeam201511 added

Trac:
Keywords: N/A deleted, GeorgKoppen201511 added

Trac:
Keywords: tbb-hardening deleted, tbb-hardened added

Trac:
Keywords: TorBrowserTeam201511 deleted, TorBrowserTeam201512 added

Trac:
Cc: N/A to mcs

bug_17406_v2 (https://gitweb.torproject.org/user/gk/tor-browser-bundle.git/commit/?h=bug_17406_v2) in my public tor-browser-bundle repo has a patch for testing SelfRando in our hardened nightly builds. This is nothing for the hardened alpha series yet. Please review.

Trac:
Keywords: GeorgKoppen201511, TorBrowserTeam201512 deleted, TorBrowserTeam201605R, GeorgKoppen201605 added
Status: new to needs_review
Reviewer: N/A to N/A
Cc: mcs to mcs, boklm

I didn't try to build it yet (I started one but it's not finished yet), but it looks good.

One small thing, in RelativeLink/start-tor-browser, with this line:

LD_LIBRARY_PATH="${HOME}/TorBrowser/Tor/:${LD_LIBRARY_PATH}"

I think that when $LD_LIBRARY_PATH is undefined, it is similar to adding . to the library path, which might cause some problems.

Trac:
Status: needs_review to needs_revision

My build failed with a Cannot allocate memory error:

+ /home/debian/install/binutils/bin/ld.gold --section-start .dynsym=0x800 -dn /home/debian/install/self-rando/randoentry.o /home/debian/install/self-rando/sr_begin.o /home/debian/install/self-rando/libselfrando.a /home/debian/install/self-rando/sr_end.o -dy -plugin /home/debian/install/gcc/libexec/gcc/x86_64-unknown-linux-gnu/5.2.0/liblto_plugin.so -plugin-opt=/home/debian/install/gcc/libexec/gcc/x86_64-unknown-linux-gnu/5.2.0/lto-wrapper -plugin-opt=-fresolution=/tmp/ccpIArYG.res -plugin-opt=-pass-through=-lgcc_s -plugin-opt=-pass-through=-lc -plugin-opt=-pass-through=-lgcc_s --eh-frame-hdr -m elf_x86_64 -shared -o libxul.so /usr/lib/x86_64-linux-gnu/crti.o /home/debian/install/gcc/lib/gcc/x86_64-unknown-linux-gnu/5.2.0/crtbeginS.o -L/home/debian/build/selfrando/Tools/TorBrowser/tc-wrapper -L/home/debian/install/gcc/lib/gcc/x86_64-unknown-linux-gnu/5.2.0 -L/home/debian/install/gcc/lib/gcc/x86_64-unknown-linux-gnu/5.2.0/../../../../lib64 -L/lib/x86_64-linux-gnu -L/lib/../lib64 -L/usr/lib/x86_64-linux-gnu -L/home/debian/install/gcc/lib/gcc/x86_64-unknown-linux-gnu/5.2.0/../../.. -lasan -h libxul.so /home/debian/build/tor-browser/obj-x86_64-unknown-linux-gnu/toolkit/library/tmpDCjBHo.list -lpthread -ldl -z noexecstack -z text --build-id -Bsymbolic -version-script symverscript -rpath-link /home/debian/build/tor-browser/obj-x86_64-unknown-linux-gnu/dist/bin -rpath-link NONE/lib ../../intl/icu/target/lib/libicui18n.a ../../intl/icu/target/lib/libicuuc.a ../../intl/icu/target/lib/libicudata.a ../../security/nss/lib/crmf/libcrmf.a ../../js/src/libjs_static.a ../../security/nss/lib/nss/libnss3.so ../../security/nss/lib/smime/libsmime3.so ../../security/nss/lib/ssl/libssl3.so ../../security/nss/lib/util/libnssutil3.so ../../config/external/sqlite/libmozsqlite3.so ../../nsprpub/lib/ds/libplds4.so ../../nsprpub/lib/libc/src/libplc4.so ../../nsprpub/pr/src/libnspr4.so ../../config/external/lgpllibs/liblgpllibs.so -ldl -lfreetype -lfontconfig -lrt -lXrender -lasound -ldbus-glib-1 -ldbus-1 -lgobject-2.0 -lglib-2.0 -lgtk-x11-2.0 -latk-1.0 -lgio-2.0 -lpangoft2-1.0 -lgdk-x11-2.0 -lpangocairo-1.0 -lgdk_pixbuf-2.0 -lpango-1.0 -lcairo -lX11 -lXext -lXt -lgthread-2.0 -lstdc++ -lm -lgcc_s -lc -lgcc_s /home/debian/install/gcc/lib/gcc/x86_64-unknown-linux-gnu/5.2.0/crtendS.o /usr/lib/x86_64-linux-gnu/crtn.o --build-id=none -Map libxul.so.map ./padding.AF50QyuurRhLB4T.o
+ /home/debian/install/self-rando/SymProc libxul.so libxul.so.map -ffunction-sections
Can't start ar: Cannot allocate memory
Can't extract file /usr/lib/x86_64-linux-gnu/libpthread_nonshared.a(pthread_atfork.oS) tmpfile: /tmp/archived_file_Bm5hxW.o
collect2: error: ld returned 15 exit status
make[5]: *** [libxul.so] Error 1

Trac:
Cc: mcs, boklm to mcs, boklm, arthuredelstein

An export VM_MEMORY=8000 fixed the "Cannot allocate memory" error.

Replying to boklm:

I didn't try to build it yet (I started one but it's not finished yet), but it looks good.

One small thing, in RelativeLink/start-tor-browser, with this line: {{{ LD_LIBRARY_PATH="
${HOME}/TorBrowser/Tor/:$
{LD_LIBRARY_PATH}" }}}

I think that when $LD_LIBRARY_PATH is undefined, it is similar to adding . to the library path, which might cause some problems.

Yes, and I think we want to make sure that Tor Browser is only starting with the LD_LIBRARY_PATH we intended. Thus, I removed :${LD_LIBRARY_PATH}. bug_17406_v3 (https://gitweb.torproject.org/user/gk/tor-browser-bundle.git/commit/?h=bug_17406_v3) contains this and a small comment fixup.

Trac:
Status: needs_revision to needs_review

Ok, this looks good. Should we also change the default value for VM_MEMORY?

Applied to master (commit 138470ca7ce810f62761af8c3989654ec4a611fa) with VM_MEMORY set to 6000.

Trac:
Keywords: TorBrowserTeam201605R deleted, TorBrowserTeam201605 added
Status: needs_review to assigned

This is fixed in 6.5a2-hardened.

Trac:
Status: assigned to closed
Resolution: N/A to fixed

closed

moved to tpo/applications/tor-browser#17406 (closed)

Include SelfRando patches into our hardened builds

Child items ...

Activity