HPE Community
Operating System - OpenVMS
1755422 Members
2926 Online
108832 Solutions
New Discussion юеВ

Overflow

 
SOLVED
Go to solution
Uwe Zessin
Honored Contributor

тАО11-08-2004 10:02 PM

тАО11-08-2004 10:02 PM

Re: Overflow

You can assign a page's protection to PRT$_NA (no access) or not map any memory.
.
0 Kudos
Reply
Jan van den Ende
Honored Contributor

тАО11-08-2004 10:53 PM

тАО11-08-2004 10:53 PM

Re: Overflow

Bojan,

stack guard pages is a nice idea, that has been thought of by others as well:

They __ARE__ implemented in IA64-VMS, and backporting that to AXP-VMS is under investigation, but there is some worry that it _MIGHT_ break existing code, so at best it would be with Switch-on/Switch-off functionality.

Info about IA64-VMS is from the Technical Update Days, about AXP-VMS is from a private discussion with Hoff afterwards.

Guess it is NOT such a bad idea then!

Cheers.

Have one on me.

Jan
Don't rust yours pelled jacker to fine doll missed aches.
0 Kudos
Reply
Bojan Nemec
Honored Contributor

тАО11-08-2004 11:32 PM

тАО11-08-2004 11:32 PM

Re: Overflow

Jan,

That is a good notice. And I am glad that my philosophical thoughts are not allone. The on/off switch is good enought (if not switched off when porting or writing software which is sensible to attacks ;-)

Another thing abbout stack vulnerability is a non-executable stack (as you mentioned in this thread http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=721393 ). I think, that this must be implemented on all VMS platforms. I dont think that there are so much self constructing programs which builds the code on the stack and then execute this code. And if this is necesary it can be made in a different mode and not on the stack. Ok, for backward compatibility a special parameter can be implemented.

Bojan
0 Kudos
Reply
Ian Miller.
Honored Contributor

тАО11-08-2004 11:47 PM

тАО11-08-2004 11:47 PM

Re: Overflow

I'm told by Andy Goldstein that noexecute protection was never implemented for VMS on VAX or Alpha. VAXes don't have the seperate execute protection and the fault-on-execute is not set on data sections (and the stack). The only thing that fault-on-execute protection on Alphas was used for was in translated images.
____________________
Purely Personal Opinion
0 Kudos
Reply
Bojan Nemec
Honored Contributor

тАО11-09-2004 12:37 AM

тАО11-09-2004 12:37 AM

Re: Overflow

Ian,

Thanks, I was shure that the noexe flag of the psect does its work. Yust tested and you are right, the code executes fine in a:
.psect data,wrt,noexe

Maybe it will be good to implement it.

Bojan
0 Kudos
Reply
Uwe Zessin
Honored Contributor

тАО11-09-2004 02:25 AM

тАО11-09-2004 02:25 AM

Re: Overflow

I am sure that will break quite some programs on VAX...


It's been some years since I helped a customer to port from VAX to Alpha. He had one small MACRO source file and when I did:

$ macro/migrate pgm

well, the compiler spit out two pages of error messages. The customer responded with a big GULP!

Now, I did a short look over the source, inserted two lines and the result was:

$ macro/migrate pgm
$

He almost fell off the chair :-)

There simply was no PSECT in the source and I just created a CODE and a DATA psect.
.
0 Kudos
Reply
Bojan Nemec
Honored Contributor

тАО11-09-2004 03:11 AM

тАО11-09-2004 03:11 AM

Re: Overflow

Uwe,

It could be implemented so that old images works just like now. When you compile on the new version you receive a "protected" image, or with a qualifier to the compiler (or maybe to the linker, because I think this is an image activator problem) turn off the protection.
The problematic compiler is probably MACRO32 on VAX which can be upgraded to spit pages of error messages, as you say (nice verb for a bunch of errors :-).
With this new programs can be protected and, with time, all programs with a small number of exceptions will become protected.

Bojan
0 Kudos
Reply
Ian Miller.
Honored Contributor

тАО11-09-2004 04:12 AM

тАО11-09-2004 04:12 AM

Re: Overflow

Whatever is done would have to be optional for backwards compatability and switched on by compiler switch, system paramter etc.

I don't think anything would be done for VAX/VMS but I think something could be done for alpha vms and itanium vms.

Parhaps its time for another entry on the hpadvocacy web site? (as well as discussing it with your favorite hp VMS contact).
____________________
Purely Personal Opinion
0 Kudos
Reply
Jan van den Ende
Honored Contributor

тАО11-09-2004 10:01 PM

тАО11-09-2004 10:01 PM

Re: Overflow

Ian,

as I still cannot enter deep enough into the Advocasy site (something with confusion about logging in the one site and address a mirror or the other way around, and then NOT being authorized on that. Being worked on),
would you please do the service?
I guess entering a pointer to this stream will get the message over.

Cheers.

Have one on me.

jpe

Don't rust yours pelled jacker to fine doll missed aches.
0 Kudos
Reply
Ian Miller.
Honored Contributor

тАО11-09-2004 10:37 PM

тАО11-09-2004 10:37 PM

Solution

Re: Overflow

I've submitted this but it wont appear just yet. When I submitted this the following was displayed
"Your issue will not appear immediately. All submitted issues are reviewed for posting each Monday. If there are questions about your issue submission, you will be contacted via email.
"

When it appears I will post a link here and you can all go and vote.
____________________
Purely Personal Opinion
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.