security - Is linux fork insecure -


i reading article

it says fork create copy of , fork man says so

. entire virtual address space of parent replicated in child

does mean child process can read process memory state ?

can child process dump entire parent memory state , can analysed extract parent variable , value. ?

but article says 2 process cannot ready each other data. confused ?

yes, child process can read a pristine copy of of parent process state (but when writing, own address space affected) after fork(2). however, of time, child use execve(2) start new program, , "clear" , replace copy of original parent's address space (by fresh address space). notice execve , mmap(2) (see shared memory in shm_overview(7)...) common ways change address space in virtual memory of process (and how kernel handles page faults).

the kernel uses (and sets mmu for) lazy copy on write machinery make child's address space copy of parent's one, fork quite efficient in practice.

read proc(5), type follow commands:

cat /proc/self/maps cat /proc/$$/maps sudo cat /proc/1/maps

and understand happening

read wikipage on fork, , advanced linux programming book.

there no insecurity, because if child changing data (e.g. variable, heap or stack location, ...) not affect parent process.

if program doing fork keeping password in virtual memory location, child process able read location long executing same program. once child did successful execve (which common situation, , shell doing) previous address space gone , replaced new one, described in elf executable of exec-ed program.

there no "lie" or "insecurity" in unix model. contrarily several other operating systems, unix & posix have 2 separate system calls creating new process (fork) , executing new program (execve). other systems might have single spawn operation mixing 2 abilities. posix_spawn implemented mixture of fork & execve (and system(3) & popen(3), using waitpid(2) & /bin/sh....).

the advantage of unix approach (having separated fork & execve) after fork , before execve in child can lot of useful things (e.g. closing useless file descriptors, ...). operating systems not separating 2 features may need have quite complex spawning primitive.

there rare occasions fork not followed execve. mpi implementations might that, , might that. know able read parent's address space thru own copy - felt insecurity becoming useful feature. in old days had obsolete vfork blocked parents. there not need use today; actually, fork implemented thru clone(2) should not use directly in practice (see futex(7)...) thru posix pthreads. thinking of fork magical cloner of process might help.

when coding (even in c) don't forget test against failure of fork , of execve. see perror(3)

ps. fork syscall difficult understand multiverse idea. both "forking" time!


Comments

Post a Comment

Popular posts from this blog

javascript - Using jquery append to add option values into a select element not working -

i'm looking dynamically populate select element names of items stored array. for reason it's not working , i'm not sure why. html: <div class="col-md-4 col-md-offset-4"> <select class="select1"> </select> , <select class="select2"> </select> </div> note i'm using bootstrap layout. here's jquery i'm using try , populate ".select1" jquery: select: function() { $.each(state.greens, function(index, value) { $(".select1").append("<option value =' " + index + " '>" + state.greens[index].name + "</option>"); }); } note function 'select' stored within object called 'display'. state.greens name of array i'm trying access. so @ end of html page call display.select(); call function. no error messages showing in console. also, saw question: appending
Read more

Android soft keyboard reverts to default keyboard on orientation change -

i'm building android soft keyboard , can't seem fix bug - have arabic , qwerty keyboard , when rotate device on qwerty keyboard (or arabic shift), it's if program has "restarted" , becomes arabic keyboard without shift. the onsaveinstancestate(bundle savedinstancestate) not work because application not extend activity inputmethodservice . i put following in android manifest android:configchanges="keyboard|keyboardhidden|orientation" android:windowsoftinputmode="stateunchanged|adjustresize"> i tried using @override public void onconfigurationchanged(configuration newconfig) { super.onconfigurationchanged(newconfig); log.i(mydebug, "config changed " + currentkeyboard.equals(qwerty)); } however, currentkeyboard.equals(qwerty)) results false , made sure true before orientation change. any appreciated. i think applications fault. if application restarting on orientation change
Read more

jquery - javascript onscroll fade same class but with different div -

i new @ javascript , want learn new. there wrong code : why div fades @ same time. i want ask how fade different div s same class name.can me , explain me. thanks in advance. javascript: $(window).scroll(function(){ if ($( "div.fade" ).offset().top - $(window).scrolltop() <= 100){ $('.fade').addclass( "fade-in"); } else { $('.fade').removeclass("fade-in"); } }); here jsfiddle onscroll = function () { var scrolltop = $(this).scrolltop() ; $("div.fade").each(function(){ if(($(this).offset().top - scrolltop) <= 100){ $(this).toggleclass("fade-in"); } }) }
Read more