• Andrew Morton's avatar
    [PATCH] Non-Exec stack support · 01cc53b2
    Andrew Morton authored
    From: Kurt Garloff <garloff@suse.de>
    
    A patch to parse the elf binaries for a PT_GNU_STACK section to set the stack
    non-executable if possible.  Most parts have been shamelessly stolen from
    Ingo Molnar's more ambitious stackshield
    http://people.redhat.com/mingo/exec-shield/exec-shield-2.6.4-C9
    
    The toolchain has meanwhile support for marking the binaries with a
    PT_GNU_STACK section wwithout x bit as needed.
    
    If no such section is found, we leave the stack to whatever the arch defaults
    to.  If there is one, we explicitly disabled the VM_EXEC bit if no x bit is
    found, otherwise explicitly enable.
    01cc53b2
binfmt_aout.c 13.9 KB