Tetsuo Handa
2017-12-25 14:10:35 UTC
Hello.
Since RHEL 7 started supporting AArch64 architecture, I added symbol
guessing logic for AArch64 architecture to AKARI and CaitSith. Also, since
Linux 4.15 started automatically hashing values printed by plain %p format,
current instruction which manually compares the guessed addresses with
addresses recorded in System.map no longer works. Although it will be possible
to replace %p format with 0x%lx or %px format, I decided to take this opportunity
to stop printing addresses of guessed symbols. And I modified symbol guessing
logic to automatically verify address of guessed functions and address of
security_hook_heads object. Therefore, when loading akari_test.ko or
caitsith_test.ko on Linux 4.2 and later kernels, there should be no symbols to
manually compare.
Latest files are shown below.
ccs-patch-1.8.5-20171111.tar.gz MD5:dddd09af1377c72da5bd5cf230c9a24b
akari-1.0.37-20171225.tar.gz MD5:99992ce7c7e4501da62333dc770d29be
caitsith-patch-0.2-20171225.tar.gz MD5:ddddbb52b72d6bb10ad6d5283b5a5057
Happy Holidays!
Since RHEL 7 started supporting AArch64 architecture, I added symbol
guessing logic for AArch64 architecture to AKARI and CaitSith. Also, since
Linux 4.15 started automatically hashing values printed by plain %p format,
current instruction which manually compares the guessed addresses with
addresses recorded in System.map no longer works. Although it will be possible
to replace %p format with 0x%lx or %px format, I decided to take this opportunity
to stop printing addresses of guessed symbols. And I modified symbol guessing
logic to automatically verify address of guessed functions and address of
security_hook_heads object. Therefore, when loading akari_test.ko or
caitsith_test.ko on Linux 4.2 and later kernels, there should be no symbols to
manually compare.
Latest files are shown below.
ccs-patch-1.8.5-20171111.tar.gz MD5:dddd09af1377c72da5bd5cf230c9a24b
akari-1.0.37-20171225.tar.gz MD5:99992ce7c7e4501da62333dc770d29be
caitsith-patch-0.2-20171225.tar.gz MD5:ddddbb52b72d6bb10ad6d5283b5a5057
Happy Holidays!