diff options
author | Wolfgang Wiedmeyer <wolfgit@wiedmeyer.de> | 2016-01-14 22:28:06 +0100 |
---|---|---|
committer | Wolfgang Wiedmeyer <wolfgit@wiedmeyer.de> | 2016-01-14 22:28:06 +0100 |
commit | 33f0f8829308781a59b094a6ed8c6ad62539b11f (patch) | |
tree | 1888c4945e32290dfeb56057bd8e2921793a48ba /binutils-2.25/gold | |
parent | ce50b1b3b1e1b45732545cffd79073afa36a5192 (diff) | |
parent | a95c2e5c5e5338f535c730b2333e797adf2872c0 (diff) | |
download | toolchain_binutils-33f0f8829308781a59b094a6ed8c6ad62539b11f.tar.gz toolchain_binutils-33f0f8829308781a59b094a6ed8c6ad62539b11f.tar.bz2 toolchain_binutils-33f0f8829308781a59b094a6ed8c6ad62539b11f.zip |
Merge branch 'master' of https://android.googlesource.com/toolchain/binutils into HEAD
Diffstat (limited to 'binutils-2.25/gold')
-rw-r--r-- | binutils-2.25/gold/layout.cc | 14 |
1 files changed, 12 insertions, 2 deletions
diff --git a/binutils-2.25/gold/layout.cc b/binutils-2.25/gold/layout.cc index 18063a04..54b9dc35 100644 --- a/binutils-2.25/gold/layout.cc +++ b/binutils-2.25/gold/layout.cc @@ -2819,8 +2819,18 @@ Layout::finalize(const Input_objects* input_objects, Symbol_table* symtab, if (data_seg_size >= target->max_pie_data_segment_size()) gold_warning( - _("Unsafe PIE data segment size (%" PRIu64 " > %" PRIu64 "). See " - "go/unsafe-pie."), + _("Unsafe PIE data segment size (%" PRIu64 " > %" PRIu64 "). " + "For kernels with CONFIG_ARCH_BINFMT_ELF_RANDOMIZE_PIE enabled, " + "load_elf_binary() attempts to map a PIE binary into an address " + "range immediately below mm->mmap_base. The first PT_LOAD segment " + "is mapped below mm->mmap_base, the subsequent PT_LOAD segment(s) " + "end up being mapped above mm->mmap_base into the area that is " + "supposed to be the \"gap\" between the stack and the binary. Since" + " the size of the \"gap\" on x86_64 is only guaranteed to be 128MB " + "this means that binaries with large data segments > 128MB can end " + "up mapping part of their data segment over their stack resulting " + "in corruption of the stack. Any PIE binary with a data segment > " + "128MB is vulnerable to this. It is suggested to turn off PIE."), data_seg_size, target->max_pie_data_segment_size()); } |