Twitter | Pretraživanje | |
Andrey Konovalov
551
Tweetovi
269
Pratim
1.753
Osobe koje vas prate
Tweetovi
Andrey Konovalov proslijedio/la je tweet
Maddie Stone 18 h
Here are the slides for my presentation today at on variant analysis for 0-days used in the wild. I discuss 3 case studies, covering the approach, findings, and lessons learned.
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 4. velj
My take at what can be done with infosec stickers: put them into a frame instead of mutilating a laptop
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
majek04 4. velj
It's possible to hack a machine with DMA attacks - you need to be able to hot-plug PCI or firewire device. IOMMU was said to be a decent solution to the problem. But nope. It turns out IOMMU can be still broken because... computers are hard.
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 3. velj
Odgovor korisniku/ci @YtvwlD @mjg59
Indeed, I've completely missed that Debian also has lockdown:
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Grant Hernandez 7. stu
How complicated is cellular baseband firmware? At least this complicated: over 150K debugging messages across 932 directories and 2,775 files! Rebuilding the source code skeleton from Samsung S10's Shannon S5000 baseband debugging messages.
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 29. sij
Odgovor korisniku/ci @mjg59
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 29. sij
Implemented a PoC for disabling kernel lockdown on Ubuntu via a keyboard emulated through USB/IP, CC
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Matthew Garrett 28. sij
My patch to disable PCI device DMA in early boot to avoid gaps in IOMMU coverage just got merged to mainline, so here's a writeup of it:
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 27. sij
Linux kernel 5.5 includes kcov extension that allows to collect code coverage from background kernel threads:
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Dmitry Vyukov 27. sij
What I'm thinking reading this sad story of crit remote vuln introduced into all LTS kernels and still unfixed (now in your kernel)- this "forgot to release lock" is mostly solved problem today with static analysis. Kernel absolutely needs it as part of the dev process 1/n
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 25. sij
Ported my old interactive USB keyboard script to the new FaceDancer, sent a PR: CC
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 23. sij
Odgovor korisniku/ci @NedWilliamson @dvyukov
There are more, see other pages. Not many more though, Gerrit isn't really accepted in the kernel community yet
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Dmitry Vyukov 23. sij
Welcome changes for kernel: and the mailing list version for contrast: Gerrit has side-by-side diffs, full expandable context, non-lossy comments attached to lines. Here are docs:
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Saar Amar 23. sij
Wow, crazy issue bypasses PAN: Part of the uaccess routines (__arch_clear_user() and __arch_copy_{in,from,to}_user()) fail to re-enable PAN if they encounter an unhandled fault while accessing userspace. Check out the patch:
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Dmitry Vyukov 21. sij
I have so many questions right now. You know , right, the thing that runs the universe today? This FOU_ATTR_LOCAL_V6 wanted to say .len instead of .type: This means this thing never-ever worked in any way. Any attempt to pass these args would...
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Alexander Popov 23. sij
========================= The Life and Incredible Adventures of One QEMU Bug (Which I Finally Fixed) ========================= A thread [1/n]
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Dmitry Vyukov 21. sij
Week has passed... If you said 20+ you were right. 30 on dashboard (open+pending) My local instance has 70(!): All reachable by unpriv users That's not all. To find more we need to fix these first, otherwise it just keep crashing
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov proslijedio/la je tweet
Arnaldo Carvalho de Melo 16. sij
Got an OOPS? Figured out the type in the variable causing the oops? Got the offset? Deep in a sub struct? Got you covered with a new EXAMPLE:
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 16. sij
Nice talk about CFI in the Linux kernel by Slides: Video:
Reply Retweet Označi sa "sviđa mi se"
Andrey Konovalov 16. sij
Odgovor korisniku/ci @zhovner @8devices
While I can't recommend a particular chip, mainline kernel driver support would be a huge benefit. Coming from experience of completely failing to build qcacld-3.0 in anything but the default configuration for the last couple of days =/
Reply Retweet Označi sa "sviđa mi se"