From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 46190 invoked by alias); 14 Mar 2017 09:54:20 -0000 Mailing-List: contact gdb-patches-help@sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: gdb-patches-owner@sourceware.org Received: (qmail 46178 invoked by uid 89); 14 Mar 2017 09:54:18 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=-1.6 required=5.0 tests=AWL,BAYES_00,KAM_LAZY_DOMAIN_SECURITY,RCVD_IN_DNSWL_LOW autolearn=no version=3.3.2 spammy=Hx-languages-length:753, reminds X-HELO: mx0a-001b2d01.pphosted.com Received: from mx0b-001b2d01.pphosted.com (HELO mx0a-001b2d01.pphosted.com) (148.163.158.5) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Tue, 14 Mar 2017 09:54:17 +0000 Received: from pps.filterd (m0098421.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.16.0.20/8.16.0.20) with SMTP id v2E9qebs095114 for ; Tue, 14 Mar 2017 05:54:17 -0400 Received: from e06smtp13.uk.ibm.com (e06smtp13.uk.ibm.com [195.75.94.109]) by mx0a-001b2d01.pphosted.com with ESMTP id 295xm3s2gv-1 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=NOT) for ; Tue, 14 Mar 2017 05:54:06 -0400 Received: from localhost by e06smtp13.uk.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted for from ; Tue, 14 Mar 2017 09:54:04 -0000 Received: from b06cxnps3075.portsmouth.uk.ibm.com (9.149.109.195) by e06smtp13.uk.ibm.com (192.168.101.143) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted; Tue, 14 Mar 2017 09:54:02 -0000 Received: from d06av23.portsmouth.uk.ibm.com (d06av23.portsmouth.uk.ibm.com [9.149.105.59]) by b06cxnps3075.portsmouth.uk.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id v2E9s1Pe10027376; Tue, 14 Mar 2017 09:54:01 GMT Received: from d06av23.portsmouth.uk.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id AB3CBA404D; Tue, 14 Mar 2017 09:53:50 +0000 (GMT) Received: from d06av23.portsmouth.uk.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 93B06A4065; Tue, 14 Mar 2017 09:53:50 +0000 (GMT) Received: from oc1027705133.ibm.com (unknown [9.152.212.162]) by d06av23.portsmouth.uk.ibm.com (Postfix) with ESMTPS; Tue, 14 Mar 2017 09:53:50 +0000 (GMT) From: Andreas Arnez To: Pedro Alves Cc: gdb-patches@sourceware.org Subject: Re: [PATCH 3/3] linux-nat: Exploit /proc//mem for writing References: <1488816060-20776-1-git-send-email-arnez@linux.vnet.ibm.com> <1488816060-20776-4-git-send-email-arnez@linux.vnet.ibm.com> <02db005d-ce53-2ed7-7668-31b721621f54@redhat.com> Date: Tue, 14 Mar 2017 09:54:00 -0000 In-Reply-To: <02db005d-ce53-2ed7-7668-31b721621f54@redhat.com> (Pedro Alves's message of "Mon, 13 Mar 2017 20:05:06 +0000") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-TM-AS-GCONF: 00 x-cbid: 17031409-0012-0000-0000-000004E44421 X-IBM-AV-DETECTION: SAVI=unused REMOTE=unused XFE=unused x-cbparentid: 17031409-0013-0000-0000-0000179920BC Message-Id: X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2017-03-14_05:,, signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 spamscore=0 suspectscore=0 malwarescore=0 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1702020001 definitions=main-1703140081 X-IsSubscribed: yes X-SW-Source: 2017-03/txt/msg00230.txt.bz2 On Mon, Mar 13 2017, Pedro Alves wrote: > On 03/06/2017 04:00 PM, Andreas Arnez wrote: >> So far linux_proc_xfer_partial refused to handle write requests. This is >> still based on the assumption that the Linux kernel does not support >> writes to /proc//mem. That used to be true, but has changed with >> Linux 2.6.39 released in May 2011. > > Hey, I had not noticed that. Awesome. > > (There's also process_vm_readv / process_vm_writev.) Right. This reminds me that I've started a patch for exploiting process_vm_readv/writev two years ago, but then abandoned it. There was some problem with it, but I don't recall the details. Maybe I can dig it out and try again... -- Andreas