Maybe this is a dummy question, but:
we depend on operating system features to share as much memory between instances as we can,
Isn’t this a potential attack vector? Depends on a bug on the underlying system, but, still?
Everything is an attack vector.
Sure, if there is a bug in e.g. Linux’s MAP_PRIVATE implementation then it could become an attack vector. If that tradeoff doesn’t make sense for someone then the feature can be disabled.
MAP_PRIVATE
Maybe this is a dummy question, but:
Isn’t this a potential attack vector? Depends on a bug on the underlying system, but, still?
Everything is an attack vector.
Sure, if there is a bug in e.g. Linux’s
MAP_PRIVATEimplementation then it could become an attack vector. If that tradeoff doesn’t make sense for someone then the feature can be disabled.