Skip to content

Conversation

thomasnyman
Copy link
Contributor

@thomasnyman thomasnyman commented Sep 19, 2024

@wphuhn-intel noted during the C/C++ Compiler BP Call on 2024-09-19 that PT_GNU_STACK must be present on binaries on 32-bit x86 even on more recent kernels than 5.8 for the resulting process to benefit from execution prevention for program data, not only the stack.

This PR adds a note on this in the -Wl,-z,noexecstack section, as an example for why specifying the option explicitly is recommended.

William Huhn noted during the C/C++ Compiler BP Call on 2024-09-19 that  `PT_GNU_STACK` must be present on binaries on 32-bit x86 even on more recent kernels than 5.8 for the resulting process to benefit from execution prevention for program data, not only the stack.

Signed-off-by: Thomas Nyman <[email protected]>
@thomasnyman thomasnyman merged commit 6fe43e9 into main Oct 3, 2024
5 checks passed
@thomasnyman thomasnyman deleted the pt_gnu_stack_on_32bit_x86 branch October 3, 2024 13:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant