/[linux-patches]/hardened/2.6/trunk/2.6.19/4453_grsec-2.1.9-2.6.19-pax_curr_ip-fixes.patch
Gentoo

Contents of /hardened/2.6/trunk/2.6.19/4453_grsec-2.1.9-2.6.19-pax_curr_ip-fixes.patch

Parent Directory Parent Directory | Revision Log Revision Log


Revision 751 - (show annotations) (download)
Sun Dec 10 12:05:51 2006 UTC (7 years, 4 months ago) by phreak
File size: 2097 byte(s)
Reordering the patchset.
1 Index: linux-2.6.18/arch/i386/mm/fault.c
2 ===================================================================
3 --- linux-2.6.18.orig/arch/i386/mm/fault.c
4 +++ linux-2.6.18/arch/i386/mm/fault.c
5 @@ -724,10 +724,12 @@ no_context:
6 #else
7 else if (init_mm.start_code <= address && address < init_mm.end_code)
8 #endif
9 +#ifdef CONFIG_GRKERNSEC_PROC_IPADDR
10 if (tsk->signal->curr_ip)
11 printk(KERN_ERR "PAX: From %u.%u.%u.%u: %s:%d, uid/euid: %u/%u, attempted to modify kernel code",
12 NIPQUAD(tsk->signal->curr_ip), tsk->comm, tsk->pid, tsk->uid, tsk->euid);
13 else
14 +#endif
15 printk(KERN_ERR "PAX: %s:%d, uid/euid: %u/%u, attempted to modify kernel code",
16 tsk->comm, tsk->pid, tsk->uid, tsk->euid);
17 #endif
18 Index: linux-2.6.18/fs/exec.c
19 ===================================================================
20 --- linux-2.6.18.orig/fs/exec.c
21 +++ linux-2.6.18/fs/exec.c
22 @@ -1599,9 +1599,11 @@ void pax_report_fault(struct pt_regs *re
23 }
24 up_read(&mm->mmap_sem);
25 }
26 +#ifdef CONFIG_GRKERNSEC_PROC_IPADDR
27 if (tsk->signal->curr_ip)
28 printk(KERN_ERR "PAX: From %u.%u.%u.%u: execution attempt in: %s, %08lx-%08lx %08lx\n", NIPQUAD(tsk->signal->curr_ip), path_fault, start, end, offset);
29 else
30 +#endif
31 printk(KERN_ERR "PAX: execution attempt in: %s, %08lx-%08lx %08lx\n", path_fault, start, end, offset);
32 printk(KERN_ERR "PAX: terminating task: %s(%s):%d, uid/euid: %u/%u, "
33 "PC: %p, SP: %p\n", path_exec, tsk->comm, tsk->pid,
34 Index: linux-2.6.18/security/Kconfig
35 ===================================================================
36 --- linux-2.6.18.orig/security/Kconfig
37 +++ linux-2.6.18/security/Kconfig
38 @@ -8,7 +8,7 @@ menu "PaX"
39
40 config PAX
41 bool "Enable various PaX features"
42 - depends on GRKERNSEC && (ALPHA || ARM || IA64 || MIPS32 || MIPS64 || PARISC || PPC32 || PPC64 || SPARC32 || SPARC64 || X86 || X86_64)
43 + depends on (ALPHA || ARM || IA64 || MIPS32 || MIPS64 || PARISC || PPC32 || PPC64 || SPARC32 || SPARC64 || X86 || X86_64)
44 help
45 This allows you to enable various PaX features. PaX adds
46 intrusion prevention mechanisms to the kernel that reduce

  ViewVC Help
Powered by ViewVC 1.1.20