0.3 textrel

goodoldmarty at gmail.com goodoldmarty at gmail.com
Sun Dec 23 04:14:40 PST 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> I think I have a fix. The bug is in the gcc-fpie patch. Using -fpic on the 
> command line would not disable -fPIE, and some libraries, like the pic 
> version of libiberty, end up with text relocation's. From what I see this 
> only affected libbfd and libproc. New patch is here:
> http://www.linuxfromscratch.org/~robert/new/gcc-4.1.2-fpie-20071223.patch
> 

I don't disagree with the objectives, but that patch is just
spoon-feeding anyway. Some people prefer to specify 'all' their own
options. What's wrong with instructions to do that, instead of patch's?

Preventing TEXTREL is logical, but what about preventing ELF ET_REL
injection in kernel memory? The available tools can now evade
PAX/grsecurity and they do this from user space; I find this disturbing.

Marty B.

- --
Putting Microsoft in a computer is like putting screen doors in a
submarine. Hopeless.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFHblEwodd/GHZYnVQRAkB8AKCCse9Bv9CAr5o+fox6d8b2cGfzeACfRQrC
c3eMJBxmG/vvTPeUXzkK2lI=
=YG5v
-----END PGP SIGNATURE-----



More information about the hlfs-dev mailing list