From 731e8ffdcf6877c04092aa9fbd2b17907b8846c7 Mon Sep 17 00:00:00 2001 From: Rich Felker Date: Sat, 25 Aug 2012 17:24:46 -0400 Subject: ensure canary is setup if stack-prot libs are dlopen'd into non-ssp app previously, this usage could lead to a crash if the thread pointer was still uninitialized, and otherwise would just cause the canary to be zero (less secure). --- src/ldso/dynlink.c | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) (limited to 'src/ldso') diff --git a/src/ldso/dynlink.c b/src/ldso/dynlink.c index d7d68002..6ffda49c 100644 --- a/src/ldso/dynlink.c +++ b/src/ldso/dynlink.c @@ -81,6 +81,7 @@ static int ldso_fail; static jmp_buf rtld_fail; static pthread_rwlock_t lock; static struct debug debug; +static size_t *auxv; struct debug *_dl_debug_addr = &debug; @@ -603,7 +604,7 @@ void _dl_debug_state(void) void *__dynlink(int argc, char **argv) { - size_t *auxv, aux[AUX_CNT] = {0}; + size_t aux[AUX_CNT] = {0}; size_t i; Phdr *phdr; Ehdr *ehdr; @@ -838,6 +839,8 @@ void *dlopen(const char *file, int mode) p->global = 1; } + if (ssp_used) __init_ssp(auxv); + _dl_debug_state(); do_init_fini(tail); -- cgit v1.2.1