The point of pinsyscall is that they have to jump to the *single* entry point fo... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		wahern 5 months ago \| parent \| context \| favorite \| on: A more robust raw OpenBSD syscall demo The point of pinsyscall is that they have to jump to the single entry point for that syscall, rather than any of the ~200+ syscall instructions littering the address space. ALSR makes finding an entry point difficult, but that's easier if you only need to find any syscall instruction, rather than the specific one for the syscall you're invoking. The rationale is explained here: https://undeadly.org/cgi?action=article;sid=20230222064027

saagarjha 5 months ago [–]

I’ve already expressed my opinion on this particular mitigation elsewhere and I’m pretty sure you’ve read it so I won’t go into it again here. I was more interested in the scheme that the other comment was constructing.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact