linker - gcc -fno-stack-protector for linking not work -

-

my gcc version : gcc version 4.8.2 (ubuntu 4.8.2-19ubuntu1)

the following makefile

all : main.o utility.o                                                                                                                                                                                            gcc -fno-stack-protector -wl,-z,execstack -o binary main.o utility.o -lcrypto main : main.c     gcc -z execstack -fno-stack-protector main.c -c utility: utility.c     gcc  -z execstack -fno-stack-protector utility.c -c

the file utility.o , main.o not have stack guard after linking there stack guard

objdump -d binary | grep chk 080488d0 <__stack_chk_fail@plt>:  8048e30:   e8 9b fa ff ff          call   80488d0 <__stack_chk_fail@plt>  80494dd:   e8 ee f3 ff ff          call   80488d0 <__stack_chk_fail@plt>  80498e2:   e8 e9 ef ff ff          call   80488d0 <__stack_chk_fail@plt>  8049b92:   e8 39 ed ff ff          call   80488d0 <__stack_chk_fail@plt>  8049c9e:   e8 2d ec ff ff          call   80488d0 <__stack_chk_fail@plt>  8049da2:   e8 29 eb ff ff          call   80488d0 <__stack_chk_fail@plt>  804a137:   e8 94 e7 ff ff          call   80488d0 <__stack_chk_fail@plt>

how disable it?

the following makefile
gcc -z execstack -fno-stack-protector main.c -c

that command bogus; if should have -wl,-z,execstack. however, since that's linker option, , not linking here, best remove -z exestack completely.

but after linking there stack guard

the calls __stack_chk_fail must coming code linked binary. perhaps libcrypto.a, or libgcc.a. can see coming from, in 2 ways:

gcc -fno-stack-protector -wl,-z,execstack -o binary main.o utility.o \  -lcrypto -wl,-y,__stack_chk_fail

will produce messages this:

/some/libfoo.a(bar.o): reference __stack_chk_fail  # care one! /usr/lib/libc.so.6: definition of __stack_chk_fail

or can use binary built:

objdump -d binary | egrep '>:$|__stack_chk_fail' | grep -b1 __stack_chk_fail

that should tell functions inside binary reference __stack_chk_fail, , should able guess these functions coming from.

p.s. unless studying buffer overflow exploitation techniques, disabling stack protector , linking -z,execstack really bad idea.


Comments

Post a Comment

Popular posts from this blog

Java 3D LWJGL collision -

-
i making 3d java game lwjgl library, , wondering how add collision detection, player not go through models. i using obj models. here objloader class, loads models: package renderengine; import java.io.bufferedreader; import java.io.file; import java.io.filenotfoundexception; import java.io.filereader; import java.util.arraylist; import java.util.list; import models.rawmodel; import org.lwjgl.util.vector.vector2f; import org.lwjgl.util.vector.vector3f; public class objloader { public static rawmodel loadobjmodel(string filename, loader loader){ filereader fr = null; try { fr = new filereader(new file("res/"+filename+".obj")); } catch (filenotfoundexception e) { system.err.println("couldn't load file!"); e.printstacktrace(); } bufferedreader reader = new bufferedreader(fr); string line; list<vector3f> vertices = new arraylist<vector3f...
Read more

spring - SubProtocolWebSocketHandler - No handlers -

-
i have ugly error during deploying spring app on jboss. 18:11:16,025 error [org.apache.catalina.core.containerbase.[jboss.web].[default-host].[/consumer]] (msc service thread 1-7) exception sending context initialized event listener instance of class org.springframework.web.context.contextloaderlistener: org.springframework.context.applicationcontextexception: failed start bean 'subprotocolwebsockethandler'; nested exception java.lang.illegalargumentexception: no handlers @ org.springframework.context.support.defaultlifecycleprocessor.dostart(defaultlifecycleprocessor.java:176) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor.access$200(defaultlifecycleprocessor.java:51) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor$lifecyclegroup.start(defaultlifecycleprocessor.java:346) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.s...
Read more

methods - python can't use function in submodule -

-
my folder structure this: pythonstuff/ program.py modulea/ __init__.py foo.py bar.py here's code bar.py : def hello(): print("hello, world!") here's code program.py : #!/usr/bin/env python3 modulea import bar bar.hello() i run $ python3 program.py somehow error: file "program.py", line 3, in <module> bar.hello() attributeerror: 'module' object has no attribute 'hello' edit: __init__.py file empty. edit2: after trying realized had bar.py in root directory contained hello() method. bar.py in modulea/ directory empty. add it import os __all__ = [] module in os.listdir(os.path.dirname(__file__)): if module != '__init__.py' , module[-3:] == '.py': __all__.append(module[:-3]) the init .py files required make python treat directories containing packages; done prevent directories common name, such string, unintentionally hiding v...
Read more