On 24.07.2018 14:53, Joerg Sonnenberger wrote: > On Tue, Jul 24, 2018 at 06:44:52AM +0200, Martin Husemann wrote: >> On Mon, Jul 23, 2018 at 11:02:04PM +0200, Kamil Rytarowski wrote: >>> We need to maintain a function to translate certain ranges to >>> shadow/meta/origin/etc. We cannot map arbitrarily wide ranges to them. >> >> Can we extend the pax note (or create a new one) and make the sanitizers >> link that in? Then make the kernel reserve some (random) VA spaces >> (details of what is needed in the note) and provide some way for the >> sanitizers to find that special VAs (like from the aux vector)? > > Yes, all sanitized binaries should contain a note if they require > certain fixed mappings to be reserved. I don't think there is *any* need > to disable ASLR beyond that. > > Joerg > Ok, Please prepare a patch for this and I can test it. I don't think it will be sufficient (as noted in my previous mails). On my end I will check whether reexec() in init(8) works and if not, I will refer to paxctl(8).
Attachment:
signature.asc
Description: OpenPGP digital signature