This is the mail archive of the gcc-help@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: loading of shared objects and executables

From: Michael Zintakis <michael dot zintakis at googlemail dot com>
To: "gcc-help at gcc dot gnu dot org" <gcc-help at gcc dot gnu dot org>
Date: Sat, 27 Oct 2012 20:26:17 +0100
Subject: Re: loading of shared objects and executables
References: <508BE980.9020903@googlemail.com> <5F3AFFD2D26186458636762CE30CCF65018C2E@MX102CL01.corp.emc.com>

Hi Roman,

or 2. create a separate header/section (called ".security" for example) and attach that verification data there.
As Linux uses ELF, I personally like the second approach as it's much more consistent.

Indeed, much easier to create/maintain and is quite flexible as well (I could have multiple sections for multiple purposes - .security.sig.hash, .security.sig.name, .security.flags for example).

To make a custom section layout you can use linker scripts (http://sourceware.org/binutils/docs/ld/Scripts.html).

Yep, that was another good one - thank you! For already-built binaries I could use objcopy (I tested it earlier today and it is flawless!), so that folds up nicely for compiling new ELF binaries.

References:
- Re: loading of shared objects and executables
  - From: Michael Zintakis
- RE: loading of shared objects and executables
  - From: Bolshakov, Roman

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]