[Crash-utility] [PATCH v2 3/3] Automatically detect kernel aslr offset.
Kees Cook
keescook at google.com
Fri Feb 21 20:37:25 UTC 2014
On Fri, Feb 21, 2014 at 11:58 AM, Andrew Honig <ahonig at google.com> wrote:
> On Fri, Feb 21, 2014 at 11:52 AM, Dave Anderson <anderson at redhat.com> wrote:
>> Right, it would be nice if the KERNELOFFSET vmcoreinfo item had gone into
>> the kernel at the same time as kALSR. I see that it's not in Linus' tree
>> yet -- has it been accepted into any other tree waiting to be pulled?
>>
>> Anyway, for that reason, I like the idea of the --kaslr=auto option, and
>> maybe setting a flag somewhere, say in st->flags. And when the KERNELOFFSET
>> item does eventually show up, the same flag could be set during the initial
>> scan of the dumpfile header, obviating the need for --kaslr.
>>
>> Which reminds me -- the "SYMBOL(_stext)" check that you make in is_netdump()
>> also has to be done in is_diskdump() as well. Currently makedumpfile does
>> not work with kaslr dumpfiles, but they will eventually get it working.
>>
>
> Sounds good to me, I'll do that. I'll check with kees on the
> KERNELOFFSET patch status.
I CC'd you guys on a ping for that patch. I think Peter Anvin has been
busy so he didn't pick it up yet. If it doesn't get traction soon, I
can see if other x86 folks will take it.
-Kees
--
Kees Cook
Chrome OS Security
More information about the Crash-utility
mailing list