linux-mips
[Top] [All Lists]

Re: [PATCH] Improve o32 syscall handling

To: Thiemo Seufer <ica2_ts@csv.ica.uni-stuttgart.de>
Subject: Re: [PATCH] Improve o32 syscall handling
From: "Gleb O. Raiko" <raiko@niisi.msk.ru>
Date: Tue, 23 Nov 2004 15:47:09 +0300
Cc: linux-mips@linux-mips.org, ralf@linux-mips.org
In-reply-to: <20041121164557.GQ20986@rembrandt.csv.ica.uni-stuttgart.de>
Organization: NIISI RAN
Original-recipient: rfc822;linux-mips@linux-mips.org
References: <20041121164557.GQ20986@rembrandt.csv.ica.uni-stuttgart.de>
Sender: linux-mips-bounce@linux-mips.org
User-agent: Mozilla Thunderbird 0.9 (Windows/20041103)
Hello,

Thiemo Seufer wrote:
this is a major cleanup for the o32 syscall handling.

While we're here, there is an ptrace exploit in the syscall handling.

The kernel parses arguments, gets the address of the syscall handling routine in t2, and goes to the process which ptraces. On return from this process, the kernel restores t2 from the user stack and jumps there. I've got an example that gets root from this.

Regards,
Gleb.

<Prev in Thread] Current Thread [Next in Thread>