I suppose it'd be easy enough to re-seed RNGs, but re-relocating ASLR sounds like a pain. (Although I suppose for Python that doesn't matter)

▲

hinkley 2 days ago | parent | next [-]

Off the cuff, the first step to ASLR is don’t publish your images and to rotate your snapshots regularly.

The old fastCGI trick is to buffer the forking by idling a half a dozen or ten copies of the process and initialize new instances in the background while the existing pool is servicing new requests. By my count we are reinventing fastCGI for at least the fourth time.

Long running tasks are less sensitive to the startup delays because we care a lot about a 4 second task taking an extra five seconds and we care much less about a 1 minute task taking 1:05. It amortizes out even in Little’s Law.

▲

cperciva 2 days ago | parent | prev [-]

Re-seeding is easy. The hard parts are (a) finding everything which needs to be reseeded -- not just explicit RNGs but also things like keys used to pick outgoing port numbers in a pseudorandom order -- and (b) making sure that all the relevant code becomes aware that it was just forked -- not necessarily trivial given that there's no standard "you just got restarted from a snapshot" signal in UNIX.

▲

Intermernet 2 days ago | parent | next [-]

I would have thought that in the days of containers, we'd have better tooling around this. Sounds like a goldmine for vuln research!

▲

aa-jv 2 days ago | parent | prev [-]

Isn't this what -HUP is supposed to be for in the first place? Maybe a -STOP/-HUP/-HUP situation?

▲

treyd 2 days ago | parent [-]

HUP is short for "hangup" which was supposed to be sent when the tty controlling the session the process is in hung up.

	▲	aa-jv an hour ago \| parent [-]
		Right, so tty's go stale prior to the freeze and they must be renewed after the freeze .. seems to me there's a missing system heuristic here.