| 1 |
I've booted the kernel which compiled ok (config-pax-ok) and its |
| 2 |
working without problems... so far. |
| 3 |
So I'm now using ASLR in ppc "successfully", cat /proc/self/maps or |
| 4 |
ldd /usr/bin/gcc gives me something like: |
| 5 |
|
| 6 |
--(newton)-(pts1)-(02:55/07-Nov-04)-- |
| 7 |
--<~>-- cat /proc/self/maps |
| 8 |
10000000-10004000 r-xp 00000000 03:03 170614 /bin/cat |
| 9 |
10014000-10015000 rwxp 00004000 03:03 170614 /bin/cat |
| 10 |
10015000-10045000 rwxp 10015000 00:00 0 |
| 11 |
32f50000-32f67000 r-xp 00000000 03:03 118868 /lib/ld-2.3.3.so |
| 12 |
32f67000-32f68000 rw-p 32f67000 00:00 0 |
| 13 |
32f70000-32f71000 r--p 00020000 03:03 118868 /lib/ld-2.3.3.so |
| 14 |
32f71000-32f72000 rwxp 00021000 03:03 118868 /lib/ld-2.3.3.so |
| 15 |
32f7d000-330ad000 r-xp 00000000 03:03 118878 /lib/libc-2.3.3.so |
| 16 |
330ad000-330af000 r--p 00130000 03:03 118878 /lib/libc-2.3.3.so |
| 17 |
330af000-330b3000 rwxp 00132000 03:03 118878 /lib/libc-2.3.3.so |
| 18 |
330b3000-330b5000 rwxp 330b3000 00:00 0 |
| 19 |
7e347000-7e34a000 rwxp 7e347000 00:00 0 |
| 20 |
--(newton)-(pts1)-(02:55/07-Nov-04)-- |
| 21 |
--<~>-- cat /proc/self/maps |
| 22 |
10000000-10004000 r-xp 00000000 03:03 170614 /bin/cat |
| 23 |
10014000-10015000 rwxp 00004000 03:03 170614 /bin/cat |
| 24 |
10015000-1003e000 rwxp 10015000 00:00 0 |
| 25 |
33475000-3348c000 r-xp 00000000 03:03 118868 /lib/ld-2.3.3.so |
| 26 |
3348c000-3348d000 rw-p 3348c000 00:00 0 |
| 27 |
33495000-33496000 r--p 00020000 03:03 118868 /lib/ld-2.3.3.so |
| 28 |
33496000-33497000 rwxp 00021000 03:03 118868 /lib/ld-2.3.3.so |
| 29 |
334a2000-335d2000 r-xp 00000000 03:03 118878 /lib/libc-2.3.3.so |
| 30 |
335d2000-335d4000 r--p 00130000 03:03 118878 /lib/libc-2.3.3.so |
| 31 |
335d4000-335d8000 rwxp 00132000 03:03 118878 /lib/libc-2.3.3.so |
| 32 |
335d8000-335da000 rwxp 335d8000 00:00 0 |
| 33 |
7946e000-79470000 rwxp 7946e000 00:00 0 |
| 34 |
--(newton)-(pts1)-(02:55/07-Nov-04)-- |
| 35 |
--<~>-- cat /proc/self/maps |
| 36 |
10000000-10004000 r-xp 00000000 03:03 170614 /bin/cat |
| 37 |
10014000-10015000 rwxp 00004000 03:03 170614 /bin/cat |
| 38 |
10015000-1003b000 rwxp 10015000 00:00 0 |
| 39 |
36420000-36437000 r-xp 00000000 03:03 118868 /lib/ld-2.3.3.so |
| 40 |
36437000-36438000 rw-p 36437000 00:00 0 |
| 41 |
36440000-36441000 r--p 00020000 03:03 118868 /lib/ld-2.3.3.so |
| 42 |
36441000-36442000 rwxp 00021000 03:03 118868 /lib/ld-2.3.3.so |
| 43 |
3644d000-3657d000 r-xp 00000000 03:03 118878 /lib/libc-2.3.3.so |
| 44 |
3657d000-3657f000 r--p 00130000 03:03 118878 /lib/libc-2.3.3.so |
| 45 |
3657f000-36583000 rwxp 00132000 03:03 118878 /lib/libc-2.3.3.so |
| 46 |
36583000-36585000 rwxp 36583000 00:00 0 |
| 47 |
78371000-78374000 rwxp 78371000 00:00 0 |
| 48 |
|
| 49 |
--(newton)-(pts1)-(02:55/07-Nov-04)-- |
| 50 |
--<~>-- ldd /usr/bin/gcc |
| 51 |
libc.so.6 => /lib/libc.so.6 (0x34d87000) |
| 52 |
/lib/ld.so.1 => /lib/ld.so.1 (0x34d5a000) |
| 53 |
--(newton)-(pts1)-(02:56/07-Nov-04)-- |
| 54 |
--<~>-- ldd /usr/bin/gcc |
| 55 |
libc.so.6 => /lib/libc.so.6 (0x3745c000) |
| 56 |
/lib/ld.so.1 => /lib/ld.so.1 (0x3742f000) |
| 57 |
--(newton)-(pts1)-(02:56/07-Nov-04)-- |
| 58 |
--<~>-- ldd /usr/bin/gcc |
| 59 |
libc.so.6 => /lib/libc.so.6 (0x374cf000) |
| 60 |
/lib/ld.so.1 => /lib/ld.so.1 (0x374a2000) |
| 61 |
|
| 62 |
paxtest is masked, but i'm going to see if it compiles... |
| 63 |
|
| 64 |
On Sat, 6 Nov 2004 17:05:12 +0000, Miguel Filipe |
| 65 |
<miguel.filipe@×××××.com> wrote: |
| 66 |
> don't rush out a new version.. cause i've got bug reports to guive on ppc! |
| 67 |
> |
| 68 |
> info: exec protection on ppc fails to compile |
| 69 |
> |
| 70 |
> cat pax-err1.log |
| 71 |
> fs/exec.c: In function `pax_report_fault': |
| 72 |
> fs/exec.c:1580: error: structure has no member named `curr_ip' |
| 73 |
> fs/exec.c:1582: error: structure has no member named `curr_ip' |
| 74 |
> fs/exec.c:1582: error: structure has no member named `curr_ip' |
| 75 |
> fs/exec.c:1582: error: structure has no member named `curr_ip' |
| 76 |
> fs/exec.c:1582: error: structure has no member named `curr_ip' |
| 77 |
> fs/exec.c:1582: error: structure has no member named `role' |
| 78 |
> fs/exec.c:1583: error: structure has no member named `acl' |
| 79 |
> fs/exec.c:1585: error: structure has no member named `curr_ip' |
| 80 |
> fs/exec.c:1587: error: structure has no member named `curr_ip' |
| 81 |
> fs/exec.c:1587: error: structure has no member named `curr_ip' |
| 82 |
> fs/exec.c:1587: error: structure has no member named `curr_ip' |
| 83 |
> fs/exec.c:1587: error: structure has no member named `curr_ip' |
| 84 |
> fs/exec.c:1591: error: structure has no member named `role' |
| 85 |
> fs/exec.c:1592: error: structure has no member named `acl' |
| 86 |
> make[1]: *** [fs/exec.o] Error 1 |
| 87 |
> |
| 88 |
> info: choosing only ASLR compiles just fine... |
| 89 |
> |
| 90 |
> I'm attaching the config files: |
| 91 |
> config-pax-err1 is the one where the kernel fails to compile |
| 92 |
> config-pax-ok is the one where the kernel compiles ok. |
| 93 |
> both are gziped. |
| 94 |
> |
| 95 |
> Notice that I haven't booted with that kernel (will do it soon). |
| 96 |
> |
| 97 |
> On Sat, 06 Nov 2004 14:56:06 +0100, pageexec@××××××××.hu |
| 98 |
> |
| 99 |
> |
| 100 |
> <pageexec@××××××××.hu> wrote: |
| 101 |
> > > I'm also going to try out pax on ppc, (ibook), to see if it compiles.. |
| 102 |
> > > and i'll report back to you. |
| 103 |
> > |
| 104 |
> > ok, thanks for all your help ;-). |
| 105 |
> > |
| 106 |
> > > gentoo-guys, please apply this one-liner to gentoo-hardened :) |
| 107 |
> > |
| 108 |
> > i've just updated all PaX patches, better take it from there, or |
| 109 |
> > rather, wait till the next grsec is out. |
| 110 |
> > |
| 111 |
> > |
| 112 |
> |
| 113 |
> |
| 114 |
> -- |
| 115 |
> Miguel Sousa Filipe |
| 116 |
> |
| 117 |
> |
| 118 |
> |
| 119 |
|
| 120 |
|
| 121 |
-- |
| 122 |
Miguel Sousa Filipe |
| 123 |
|
| 124 |
-- |
| 125 |
gentoo-hardened@g.o mailing list |
Archives