From: Timo Teras <timo.teras@iki.fi>
To: "Timo Teräs" <timo.teras@iki.fi>
Cc: qemu-devel@nongnu.org
Subject: Re: [Qemu-devel] [RFC PATCH] elfload: load PIE executables to right address
Date: Thu, 4 Jul 2013 21:40:57 +0300 [thread overview]
Message-ID: <20130704214057.24608d55@vostro> (raw)
In-Reply-To: <1372942883-26110-1-git-send-email-timo.teras@iki.fi>
On Thu, 4 Jul 2013 16:01:23 +0300
Timo Teräs <timo.teras@iki.fi> wrote:
> PIE images are ET_DYN images. Check first for pinterp_name to make
> sure the main executable always is loaded to correct place.
>
> See below for current behaviour of PIE executables:
>
> Reserved 0x7f000000 bytes of guest address space
> host mmap_min_addr=0x1000
> guest_base 0x7f7cb41d5000
> start end size prot
> 0037f400-003fe400 0007f000 r-x
> 003fe400-003ff400 00001000 ---
> 003ff400-003fe400 fffff000 rw-
> 003fe400-003ff400 00001000 ---
> 003ff400-003ffc00 00000800 rw-
> 003ffc00-003fec00 fffff000 r-x
> 003fec00-003ffc00 00001000 ---
> 003ffc00-0007f000 ffc7f400 rw-
> start_brk 0x00000000
> end_code 0x7eff7ac0
> start_code 0x7eff7000
> start_data 0x7efffac0
> end_data 0x7efffc18
> start_stack 0x7eff6dc8
> brk 0x7efffc34
> entry 0x7e799b30
> 00000000-00005000 ---p 00000000 00:00 0
> 00005000-00015000 rw-p 00000000 00:00 0
> 00015000-7e77d000 ---p 00000000 00:00 0
> 7e77d000-7e7ec000 r-xp 00000000 68:03 14326298 /lib/libc.so
> 7e7ec000-7e7f3000 ---p 00000000 00:00 0
> 7e7f3000-7e7f4000 rw-p 0006e000 68:03 14326298 /lib/libc.so
> 7e7f4000-7e7f6000 rw-p 00000000 00:00 0
> 7e7f6000-7e7f7000 ---p 00000000 00:00 0
> 7e7f7000-7eff7000 rw-p 00000000 00:00 0
> 7eff7000-7eff8000 r-xp 00000000 68:03 9731305 /usr/bin/brk
> 7eff8000-7efff000 ---p 00000000 00:00 0
> 7e7f7000-7eff7000 rw-p 00000000 00:00 0 [stack]
>
> Showing how the main binary got loaded to wrong place.
Forgot to mention. Due to the above, the brk is set wrong, and the
application will be unable to allocate any memory. Making them
practically unusable.
I've done quick testing that with this patch applied, the
PIE executables will have working brk().
- Timo
prev parent reply other threads:[~2013-07-04 18:44 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-07-04 13:01 [Qemu-devel] [RFC PATCH] elfload: load PIE executables to right address Timo Teräs
2013-07-04 18:40 ` Timo Teras [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20130704214057.24608d55@vostro \
--to=timo.teras@iki.fi \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).