| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 11 Jan 2011 16:56:02 +0100 From: Carmelo AMOROSO <carmelo.amoroso@...com> To: Mike Frysinger <vapier@...too.org> Cc: "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, Filippo ARCIDIACONO <filippo.arcidiacono@...com>, "linux-sh@...r.kernel.org" <linux-sh@...r.kernel.org>, "linux-arm-kernel@...ts.infradead.org" <linux-arm-kernel@...ts.infradead.org>, "nicolas.pitre@...aro.org" <nicolas.pitre@...aro.org>, "nico@...xnic.net" <nico@...xnic.net> Subject: Re: [PATCH 1/2] stackprotector: add stack smashing protector generic implementation -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 1/11/2011 6:30 AM, Mike Frysinger wrote: > what are you using to test this ? is there a simple strcpy or similar > code you run as a kernel module that'll allow me to verify ? > -mike > Hi Mike, yes, a simple kernel module with a init func that use strcpy or memcpy to write over the boundaries of an local array variable is enough. As you know, the array has to be larger than 8 bytes to match with the gcc heuristic and generate the call to the guard. Cheers, Carmelo -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk0sfZIACgkQoRq/3BrK1s8kfwCeIjayIoaHapweG53icp1yoCN+ ypMAnA08chxTu49eP4QYTQU8UzO4PVpp =ysi4 -----END PGP SIGNATURE-----
Powered by blists - more mailing lists