• Tobin C. Harding's avatar
    leaking_addresses: add 32-bit support · 1410fe4e
    Tobin C. Harding authored
    Currently script only supports x86_64 and ppc64.  It would be nice to be
    able to scan 32-bit machines also.  We can add support for 32-bit
    architectures by modifying how we check for false positives, taking
    advantage of the page offset used by the kernel, and using the correct
    regular expression.
    
    Support for 32-bit machines is enabled by the observation that the kernel
    addresses on 32-bit machines are larger [in value] than the page offset.
    We can use this to filter false positives when scanning the kernel for
    leaking addresses.
    
    Programmatic determination of the running architecture is not
    immediately obvious (current 32-bit machines return various strings from
    `uname -m`).  We therefore provide a flag to enable scanning of 32-bit
    kernels.  Also we can check the kernel config file for the offset and if
    not found default to 0xc0000000.  A command line option to parse in the
    page offset is also provided.  We do automatically detect architecture
    if running on ix86.
    
    Add support for 32-bit kernels.  Add a command line option for page
    offset.
    Suggested-by: default avatarKaiwan N Billimoria <kaiwan.billimoria@gmail.com>
    Signed-off-by: default avatarTobin C. Harding <me@tobin.cc>
    1410fe4e
leaking_addresses.pl 12.8 KB