Re: [PATCH v3 1/2] module: verify address is read-only

2017-03-24 Thread Kees Cook
On Fri, Mar 24, 2017 at 5:42 PM, Jessica Yu wrote: > +++ Kees Cook [23/03/17 14:13 -0700]: >> >> On Wed, Mar 22, 2017 at 7:55 PM, Eddie Kovsky wrote: >>> >>> Implement a mechanism to check if a module's address is in >>> the rodata or ro_after_init sections. It mimics the exsiting functions >>> t

Re: [PATCH v3 1/2] module: verify address is read-only

2017-03-24 Thread Kees Cook
On Fri, Mar 24, 2017 at 6:41 PM, Eddie Kovsky wrote: > On 03/24/17, Jessica Yu wrote: >> +++ Eddie Kovsky [22/03/17 20:55 -0600]: >> > Implement a mechanism to check if a module's address is in >> > the rodata or ro_after_init sections. It mimics the exsiting functions >> > that test if an address

Re: [PATCH v3 1/2] module: verify address is read-only

2017-03-24 Thread Eddie Kovsky
On 03/24/17, Jessica Yu wrote: > +++ Eddie Kovsky [22/03/17 20:55 -0600]: > > Implement a mechanism to check if a module's address is in > > the rodata or ro_after_init sections. It mimics the exsiting functions > > that test if an address is inside a module's text section. > > > > Functions that

Re: [PATCH v3 1/2] module: verify address is read-only

2017-03-24 Thread Jessica Yu
+++ Kees Cook [23/03/17 14:13 -0700]: On Wed, Mar 22, 2017 at 7:55 PM, Eddie Kovsky wrote: Implement a mechanism to check if a module's address is in the rodata or ro_after_init sections. It mimics the exsiting functions that test if an address is inside a module's text section. Functions that

Re: [PATCH v3 1/2] module: verify address is read-only

2017-03-24 Thread Jessica Yu
+++ Eddie Kovsky [22/03/17 20:55 -0600]: Implement a mechanism to check if a module's address is in the rodata or ro_after_init sections. It mimics the exsiting functions that test if an address is inside a module's text section. Functions that take a module as an argument will be able to ver

Re: [PATCH v3 1/2] module: verify address is read-only

2017-03-23 Thread Kees Cook
On Wed, Mar 22, 2017 at 7:55 PM, Eddie Kovsky wrote: > Implement a mechanism to check if a module's address is in > the rodata or ro_after_init sections. It mimics the exsiting functions > that test if an address is inside a module's text section. > > Functions that take a module as an argument wi

[PATCH v3 1/2] module: verify address is read-only

2017-03-22 Thread Eddie Kovsky
Implement a mechanism to check if a module's address is in the rodata or ro_after_init sections. It mimics the exsiting functions that test if an address is inside a module's text section. Functions that take a module as an argument will be able to verify that the module is in a read-only section.