[Bug libffi/28036] New: libffi executable stack (missing .note.GNU-stack on .o files)

Wed, 14 Jun 2006 21:37:35 -0700 

I noticed (on ubuntu) that libgcj had an executable stack; tracing this back, I
found that libffi also had an executable stack, and why.  pinskia informs me
that libffi gets linked into libgcj so that solves that!

SCANELF:
[EMAIL PROTECTED]:/tmp/x$ scanelf -qeRt /usr/lib
RWX --- ---   /usr/lib/libgcj.so.7.0.0


I built gcc and ran a scanelf on the source tree to find out what was up and
located a few .o files missing .note.GNU-stack

SCANELF:
[EMAIL PROTECTED]:/tmp/x$ scanelf -qeRt .
RWX --- ---   ./gcj-4.1-4.1.0/build/i486-linux-gnu/libffi/.libs/libffi.so.4.0.1
!WX --- ---   ./gcj-4.1-4.1.0/build/i486-linux-gnu/libffi/src/x86/sysv.o
!WX --- ---   ./gcj-4.1-4.1.0/build/i486-linux-gnu/libffi/src/x86/unix64.o
!WX --- ---   ./gcj-4.1-4.1.0/build/i486-linux-gnu/libffi/src/x86/.libs/sysv.o
!WX --- ---  
./gcj-4.1-4.1.0/build/i486-linux-gnu/libffi/src/x86/.libs/unix64.o


sysv.o and unix64.o, find them:

FIND:
[EMAIL PROTECTED]:/tmp/x$ find . -name sysv.S
./gcj-4.1-4.1.0/src/libffi/src/sh/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/cris/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/s390/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/x86/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/m68k/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/sh64/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/m32r/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/arm/sysv.S
./gcj-4.1-4.1.0/src/libffi/src/powerpc/sysv.S

Let's peek in x86:
[EMAIL PROTECTED]:/tmp/x$ ls gcj-4.1-4.1.0/src/libffi/src/x86/
ffi64.c  ffi.c  ffitarget.h  sysv.S  unix64.S  win32.S

win32.S can probably be ignored, however...
[EMAIL PROTECTED]:/tmp/x$ grep -Hnr ".note.GNU-stack" gcj-4.1-4.1.0/src/libffi/
[EMAIL PROTECTED]:/tmp/x$

The others probably need this block at the end (yanked from [1]):
#ifdef __ELF__
.section .note.GNU-stack,"",%progbits
#endif

No idea if this will clear the executable stack, haven't tested; but it'll
supply a proper .note.GNU-stack segment where it really should be at least.

[1] http://www.gentoo.org/proj/en/hardened/gnu-stack.xml


-- 
           Summary: libffi executable stack (missing .note.GNU-stack on .o
                    files)
           Product: gcc
           Version: unknown
            Status: UNCONFIRMED
          Severity: normal
          Priority: P3
         Component: libffi
        AssignedTo: unassigned at gcc dot gnu dot org
        ReportedBy: nigelenki at comcast dot net


http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28036

Reply via email to