'Re: [gentoo-hardened] gentoo-dev-hardened-2.6.7-r10 doesn't boot with pax enabled.'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gentoo-hardened
Subject:    Re: [gentoo-hardened] gentoo-dev-hardened-2.6.7-r10 doesn't boot with pax enabled.
From:       Miguel Filipe <miguel.filipe () gmail ! com>
Date:       2004-11-07 3:09:29
Message-ID: f058a9c30411061909795d2e83 () mail ! gmail ! com
[Download RAW message or body]

I've booted the kernel which compiled ok (config-pax-ok) and its
working without problems... so far.
So I'm now using ASLR in ppc "successfully", cat /proc/self/maps or
ldd /usr/bin/gcc gives me something like:

--(newton)-(pts1)-(02:55/07-Nov-04)--
--<~>-- cat /proc/self/maps 
10000000-10004000 r-xp 00000000 03:03 170614     /bin/cat
10014000-10015000 rwxp 00004000 03:03 170614     /bin/cat
10015000-10045000 rwxp 10015000 00:00 0 
32f50000-32f67000 r-xp 00000000 03:03 118868     /lib/ld-2.3.3.so
32f67000-32f68000 rw-p 32f67000 00:00 0 
32f70000-32f71000 r--p 00020000 03:03 118868     /lib/ld-2.3.3.so
32f71000-32f72000 rwxp 00021000 03:03 118868     /lib/ld-2.3.3.so
32f7d000-330ad000 r-xp 00000000 03:03 118878     /lib/libc-2.3.3.so
330ad000-330af000 r--p 00130000 03:03 118878     /lib/libc-2.3.3.so
330af000-330b3000 rwxp 00132000 03:03 118878     /lib/libc-2.3.3.so
330b3000-330b5000 rwxp 330b3000 00:00 0 
7e347000-7e34a000 rwxp 7e347000 00:00 0 
--(newton)-(pts1)-(02:55/07-Nov-04)--
--<~>-- cat /proc/self/maps 
10000000-10004000 r-xp 00000000 03:03 170614     /bin/cat
10014000-10015000 rwxp 00004000 03:03 170614     /bin/cat
10015000-1003e000 rwxp 10015000 00:00 0 
33475000-3348c000 r-xp 00000000 03:03 118868     /lib/ld-2.3.3.so
3348c000-3348d000 rw-p 3348c000 00:00 0 
33495000-33496000 r--p 00020000 03:03 118868     /lib/ld-2.3.3.so
33496000-33497000 rwxp 00021000 03:03 118868     /lib/ld-2.3.3.so
334a2000-335d2000 r-xp 00000000 03:03 118878     /lib/libc-2.3.3.so
335d2000-335d4000 r--p 00130000 03:03 118878     /lib/libc-2.3.3.so
335d4000-335d8000 rwxp 00132000 03:03 118878     /lib/libc-2.3.3.so
335d8000-335da000 rwxp 335d8000 00:00 0 
7946e000-79470000 rwxp 7946e000 00:00 0 
--(newton)-(pts1)-(02:55/07-Nov-04)--
--<~>-- cat /proc/self/maps 
10000000-10004000 r-xp 00000000 03:03 170614     /bin/cat
10014000-10015000 rwxp 00004000 03:03 170614     /bin/cat
10015000-1003b000 rwxp 10015000 00:00 0 
36420000-36437000 r-xp 00000000 03:03 118868     /lib/ld-2.3.3.so
36437000-36438000 rw-p 36437000 00:00 0 
36440000-36441000 r--p 00020000 03:03 118868     /lib/ld-2.3.3.so
36441000-36442000 rwxp 00021000 03:03 118868     /lib/ld-2.3.3.so
3644d000-3657d000 r-xp 00000000 03:03 118878     /lib/libc-2.3.3.so
3657d000-3657f000 r--p 00130000 03:03 118878     /lib/libc-2.3.3.so
3657f000-36583000 rwxp 00132000 03:03 118878     /lib/libc-2.3.3.so
36583000-36585000 rwxp 36583000 00:00 0 
78371000-78374000 rwxp 78371000 00:00 0 

--(newton)-(pts1)-(02:55/07-Nov-04)--
--<~>-- ldd /usr/bin/gcc        
        libc.so.6 => /lib/libc.so.6 (0x34d87000)
        /lib/ld.so.1 => /lib/ld.so.1 (0x34d5a000)
--(newton)-(pts1)-(02:56/07-Nov-04)--
--<~>-- ldd /usr/bin/gcc
        libc.so.6 => /lib/libc.so.6 (0x3745c000)
        /lib/ld.so.1 => /lib/ld.so.1 (0x3742f000)
--(newton)-(pts1)-(02:56/07-Nov-04)--
--<~>-- ldd /usr/bin/gcc
        libc.so.6 => /lib/libc.so.6 (0x374cf000)
        /lib/ld.so.1 => /lib/ld.so.1 (0x374a2000)

paxtest is masked, but i'm going to see if it compiles...

On Sat, 6 Nov 2004 17:05:12 +0000, Miguel Filipe
<miguel.filipe@gmail.com> wrote:
> don't rush out a new version.. cause i've got bug reports to guive on ppc!
> 
> info: exec protection on ppc fails to compile
> 
>  cat pax-err1.log
> fs/exec.c: In function `pax_report_fault':
> fs/exec.c:1580: error: structure has no member named `curr_ip'
> fs/exec.c:1582: error: structure has no member named `curr_ip'
> fs/exec.c:1582: error: structure has no member named `curr_ip'
> fs/exec.c:1582: error: structure has no member named `curr_ip'
> fs/exec.c:1582: error: structure has no member named `curr_ip'
> fs/exec.c:1582: error: structure has no member named `role'
> fs/exec.c:1583: error: structure has no member named `acl'
> fs/exec.c:1585: error: structure has no member named `curr_ip'
> fs/exec.c:1587: error: structure has no member named `curr_ip'
> fs/exec.c:1587: error: structure has no member named `curr_ip'
> fs/exec.c:1587: error: structure has no member named `curr_ip'
> fs/exec.c:1587: error: structure has no member named `curr_ip'
> fs/exec.c:1591: error: structure has no member named `role'
> fs/exec.c:1592: error: structure has no member named `acl'
> make[1]: *** [fs/exec.o] Error 1
> 
> info: choosing only ASLR compiles just fine...
> 
> I'm attaching the config files:
> config-pax-err1 is the one where the kernel fails to compile
> config-pax-ok is the one where the kernel compiles ok.
>  both are gziped.
> 
> Notice that I haven't booted with that kernel (will do it soon).
> 
> On Sat, 06 Nov 2004 14:56:06 +0100, pageexec@freemail.hu
> 
> 
> <pageexec@freemail.hu> wrote:
> > > I'm also going to try out pax on ppc, (ibook), to see if it compiles..
> > > and i'll report back to you.
> >
> > ok, thanks for all your help ;-).
> >
> > > gentoo-guys, please apply this one-liner to gentoo-hardened :)
> >
> > i've just updated all PaX patches, better take it from there, or
> > rather, wait till the next grsec is out.
> >
> >
> 
> 
> --
> Miguel Sousa Filipe
> 
> 
> 


-- 
Miguel Sousa Filipe

--
gentoo-hardened@gentoo.org mailing list

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic