This actually requires more investigation. I'll see later; perhaps I'll
just protect DATA.
Le 28/11/2015 19:54, Maxime Villard a écrit :
Hi,
here is a (draft) patch to map the kernel DATA and BSS segments with
the NX/XD bit in the PTEs on i386+amd64.
A nice PoC: patch your (amd64) kernel with t
On Sat, Nov 28, 2015 at 07:54:10PM +0100, Maxime Villard wrote:
> here is a (draft) patch to map the kernel DATA and BSS segments with
> the NX/XD bit in the PTEs on i386+amd64.
There should be no need to force extra padding between .data and .bss.
Joerg
On Sat, Nov 28, 2015 at 07:54:10PM +0100, Maxime Villard wrote:
> Hi,
> here is a (draft) patch to map the kernel DATA and BSS segments with
> the NX/XD bit in the PTEs on i386+amd64.
Pretty sure this won't work on i386. You have to have PAE enabled
before you can use NX/XD in the MMU. AFAIK i38
Hi,
here is a (draft) patch to map the kernel DATA and BSS segments with
the NX/XD bit in the PTEs on i386+amd64.
A nice PoC: patch your (amd64) kernel with the shellcode below, and
launch this:
#include
#include
#include
int main() {
sched_getp
