linux-user does not check PROT_EXEC
Bug #1832916 reported by
Richard Henderson
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
QEMU |
Expired
|
Undecided
|
Unassigned |
Bug Description
At no point do we actually verify that a page is PROT_EXEC before translating. All we end up verifying is that the page is readable. Not the same thing, obviously.
The following test case should work for any architecture, though I've only validated it for x86_64 and aarch64.
tags: | added: testcase |
To post a comment you must log in.
It turns out we can't fix this without also fixing
our implementation of signal trampolines.