[devel] Fwd: lj_udrepper: Text Relocations

[Alexey Tourbin]

textrelocs.html -- довольно интересный текст.


----- Forwarded message from rss2mail2 -----

Text Relocations at 03-06-2006 17:50:03
http://udrepper.livejournal.com/10666.html
   People treated creating DSOs with text relocations so far cavalier
   offense. The runtime automatically works around the problems the
   programmers are responsible for and the costs and risks are not
   immediately visible unless one thinks about the issue.

   This changed with the SELinux memory protection bits which are enabled
   in FC5 and later. Text relocations are a fatal flaw of a DSO or PIE
   and must be avoided. Since people complain that it's hard to fix the
   problem I've written code and wrote a little article on [0] how to fix
   them.

   For completeness I should mention that it is possible to label DSOs so
   that the kernel allows text relocations. This is done using the
   textrel_shlib_t label. But this really never should be regarded as a
   solution, it's a work-around. Denying text relocations is a major
   security feature.

   [0] http://people.redhat.com/drepper/textrelocs.html

----- End forwarded message -----
----------- следующая часть -----------
Было удалено вложение не в текстовом формате...
Имя     : =?iso-8859-1?q?=CF=D4=D3=D5=D4=D3=D4=D7=D5=C5=D4?=
Тип     : application/pgp-signature
Размер  : 191 байтов
Описание: =?iso-8859-1?q?=CF=D4=D3=D5=D4=D3=D4=D7=D5=C5=D4?=
Url     : <http://lists.altlinux.org/pipermail/devel/attachments/20060606/de232ea7/attachment-0001.bin>