Summary: | Potential NULL-pointer dereference in CET library setup | ||
---|---|---|---|
Product: | glibc | Reporter: | Carlos O'Donell <carlos> |
Component: | libc | Assignee: | Not yet assigned to anyone <unassigned> |
Status: | WAITING --- | ||
Severity: | normal | CC: | drepper.fsp, hjl.tools |
Priority: | P2 | Flags: | fweimer:
security-
|
Version: | 2.30 | ||
Target Milestone: | --- | ||
Host: | Target: | ||
Build: | Last reconfirmed: | ||
Bug Depends on: | 24259 | ||
Bug Blocks: |
Description
Carlos O'Donell
2019-01-24 20:28:36 UTC
A testcase? (In reply to H.J. Lu from comment #1) > A testcase? I don't have one yet, this was just by inspection and I didn't want to forget it so I filed a bug. sysdeps/x86/tst-cet-legacy-4c.c should cover it: [hjl@gnu-cet-1 build-x86_64-linux]$ readelf -n elf/tst-cet-legacy-4c Displaying notes found in: .note.gnu.property Owner Data size Description GNU 0x00000030 NT_GNU_PROPERTY_TYPE_0 Properties: x86 feature: IBT, SHSTK x86 ISA used: CMOV, SSE, SSE2 x86 feature used: x86, XMM ... [hjl@gnu-cet-1 build-x86_64-linux]$ readelf -n elf/tst-cet-legacy-mod-4.so Displaying notes found in: .note.gnu.property Owner Data size Description GNU 0x00000020 NT_GNU_PROPERTY_TYPE_0 Properties: x86 ISA used: <None> x86 feature used: x86 ... Breakpoint 1, __GI__dl_signal_error (errcode=22, objname=0x407260 "/export/build/gnu/tools-build/glibc-cet/build-x86_64-linux/elf/tst-cet-legacy-mod-4.so", occation=0x7ffff77f48e2 "dlopen", errstring=0x7ffff77f4d60 "shadow stack isn't enabled") at dl-error-skeleton.c:109 109 { (gdb) f 1 #1 0x00007ffff77eaea4 in dl_cet_check (m=m@entry=0x4072c0, program=program@entry=0x0) at ../sysdeps/x86/dl-cet.c:291 291 _dl_signal_error (EINVAL, l->l_name, "dlopen", (gdb) It works for me. |