OpenBSD Journal

StackGhost Support Implemented for sparc64

Contributed by jolan on from the foil-stack-smashers-for-fun-and-profit dept.

Thanks to the many submitters who pointed out that Theo and Mark Kettenis have integrated StackGhost support for the sparc64 platform. StackGhost was fully enabled for sparc in May 2004 when Mark Kettenis finished the gdb support and now sparc64 also gets to enjoy this very cheap protection mechanism.
  • Theo's mail to misc@
  • StackGhost: Hardware Facilitated Stack Protection 2001 USENIX proceedings paper
  • StackGhost homepage at CERIAS
  • (Comments are closed)

    1. By Anonymous Coward ( on

      Anyone know of any exploits that would have worked if not for stackghost or other protections on OpenBSD?

    2. By baldusi ( on

      So it's going to appear integrated in 3.8, right?

      1. By Brad ( brad at comstyle dot com on

        Yes, StackGhost for sparc64 will be integrated into the 3.8 release.

    3. By Marc Gayles ( on

      Most sparc64 systems are SMP. When will we have sparc64 SMP? Can I donate explicitly for that purpouse?

      1. By tedu ( on

        only if you know a developer who wants to work on it now. i don't know any.

        1. By Miod Vallat ( miod@ on

          Actually, I have started to work on this some time ago now that I have a dual-proc U2, but I keep being distracted by other useless things (as well as real life issues, does someone want to hire me?), so don't hold your breath.
          jason@ also said he would be interested in working on this, if he had time... which, as you may know, is a very scarce resource among free software developers, unfortunately.

      2. By Brad ( brad at comstyle dot com on

        Assuming most sparc64 systems have more than one processor is wrong.

    4. By Anonymous Coward ( on

      From what I've read, it seems sparc64 provides the most added security features in hardware and combined with OpenBSD's support of them and the added proactive security mechanisms in software, is sparc64 the best arch for exposed hosts running OpenBSD?

      Or does AMD64 come neck and neck or best sparc64?

      I like the fact that sparc64 won't execute all the x86 shellcode out there even if the hackers could get past OpenBSD's defenses. For my home servers, I would like 3 small embedded style sparc64's for firewall, web server and mail server. Anyone know of some cheap embedded systems based on the sparc64? I've found some SBC's but it seems they are expensive. Something like Soekris gear but not $10k US!

      I might just go with some Sun Ultra 5's, but I would like to minimise power if these are to be left on 24/7.


      1. By Anonymous Coward ( on

        look at the 1u netra machines. they are reasonably low-power

        1. By Anonymous Coward ( on

          look at the 1u netra machines. they are reasonably low-power

          Okay, thank you.

    5. By Chris ( on

      Is there a sparc64 snapshot available with StackGhost yet?


    Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]