Re: executing malloced memory on ia64 or sth else? (SableVM porting)

To: "Grzegorz B. Prokopski" <gadek@debian.org>
Cc: debian-ia64@lists.debian.org
Subject: Re: executing malloced memory on ia64 or sth else? (SableVM porting)
From: David Mosberger <davidm@napali.hpl.hp.com>
Date: Sun, 23 Feb 2003 11:17:15 -0800
Message-id: <[🔎] 15961.7739.841226.994706@napali.hpl.hp.com>
Reply-to: davidm@hpl.hp.com
In-reply-to: <[🔎] 1045953677.1098.146.camel@greg.home.sente.pl>
References: <[🔎] 1045953677.1098.146.camel@greg.home.sente.pl>

>>>>> On 22 Feb 2003 23:41:17 +0100, "Grzegorz B. Prokopski" <gadek@debian.org> said:

  Grzegorz> Simplyfing the whole thing - it copies some code to
  Grzegorz> malloced memory and then jumps to it, by executing: goto
  Grzegorz> *(pc->implementation); where implemenation points to the
  Grzegorz> code that is to be executed.

Apart from the function-pointer portion, don't forget to:

	(a) establish coherence between the data and instruction space, and
	(b) turn on execute permission on the malloc area via mprotect()

(b) is needed because on ia64 linux we don't turn on execute
permission on data segments by default (to make stack-overflow attacks
harder).

	--david

Reply to:

References:
- executing malloced memory on ia64 or sth else? (SableVM porting)
  - From: "Grzegorz B. Prokopski" <gadek@debian.org>

Prev by Date: Re: executing malloced memory on ia64 or sth else? (SableVM porting)
Next by Date: [Fwd: [Sablevm-developer] Inline-threading on ia64 works!]
Previous by thread: Re: executing malloced memory on ia64 or sth else? (SableVM porting)
Next by thread: [Fwd: [Sablevm-developer] Inline-threading on ia64 works!]
Index(es):
- Date
- Thread