/[linux-patches]/hardened/2.6/trunk/2.6.23/4460_grsec-2.1.10-pax_curr_ip-fixes.patch
Gentoo

Contents of /hardened/2.6/trunk/2.6.23/4460_grsec-2.1.10-pax_curr_ip-fixes.patch

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1157 - (show annotations) (download)
Fri Oct 12 23:22:36 2007 UTC (6 years, 9 months ago) by phreak
File size: 1872 byte(s)
Initial patchset for 2.6.23.
1 ---
2 arch/i386/mm/fault.c | 2 ++
3 fs/exec.c | 2 ++
4 security/Kconfig | 2 +-
5 3 files changed, 5 insertions(+), 1 deletion(-)
6
7 --- a/arch/i386/mm/fault.c
8 +++ b/arch/i386/mm/fault.c
9 @@ -713,10 +713,12 @@ no_context:
10 #else
11 else if (init_mm.start_code <= address && address < init_mm.end_code)
12 #endif
13 +#ifdef CONFIG_GRKERNSEC_PROC_IPADDR
14 if (tsk->signal->curr_ip)
15 printk(KERN_ERR "PAX: From %u.%u.%u.%u: %s:%d, uid/euid: %u/%u, attempted to modify kernel code",
16 NIPQUAD(tsk->signal->curr_ip), tsk->comm, tsk->pid, tsk->uid, tsk->euid);
17 else
18 +#endif
19 printk(KERN_ERR "PAX: %s:%d, uid/euid: %u/%u, attempted to modify kernel code",
20 tsk->comm, tsk->pid, tsk->uid, tsk->euid);
21 #endif
22 --- a/fs/exec.c
23 +++ b/fs/exec.c
24 @@ -1612,9 +1612,11 @@ void pax_report_fault(struct pt_regs *re
25 }
26 up_read(&mm->mmap_sem);
27 }
28 +#ifdef CONFIG_GRKERNSEC_PROC_IPADDR
29 if (tsk->signal->curr_ip)
30 printk(KERN_ERR "PAX: From %u.%u.%u.%u: execution attempt in: %s, %08lx-%08lx %08lx\n", NIPQUAD(tsk->signal->curr_ip), path_fault, start, end, offset);
31 else
32 +#endif
33 printk(KERN_ERR "PAX: execution attempt in: %s, %08lx-%08lx %08lx\n", path_fault, start, end, offset);
34 printk(KERN_ERR "PAX: terminating task: %s(%s):%d, uid/euid: %u/%u, "
35 "PC: %p, SP: %p\n", path_exec, tsk->comm, tsk->pid,
36 --- a/security/Kconfig
37 +++ b/security/Kconfig
38 @@ -10,7 +10,7 @@ menu "PaX"
39
40 config PAX
41 bool "Enable various PaX features"
42 - depends on GRKERNSEC && (ALPHA || ARM || AVR32 || IA64 || MIPS32 || MIPS64 || PARISC || PPC32 || PPC64 || SPARC32 || SPARC64 || X86 || X86_64)
43 + depends on (ALPHA || ARM || AVR32 || IA64 || MIPS32 || MIPS64 || PARISC || PPC32 || PPC64 || SPARC32 || SPARC64 || X86 || X86_64)
44 help
45 This allows you to enable various PaX features. PaX adds
46 intrusion prevention mechanisms to the kernel that reduce

  ViewVC Help
Powered by ViewVC 1.1.20