Re: [PATCH] leaking_addresses: Provide mechanism to scan binary files

[Greg KH]

On Sun, Feb 18, 2024 at 09:38:12AM -0800, Kees Cook wrote:
> Introduce --kallsyms argument for scanning binary files for known symbol
> addresses. This would have found the exposure in /sys/kernel/notes:
> 
> $ scripts/leaking_addresses.pl --kallsyms=<(sudo cat /proc/kallsyms)
> /sys/kernel/notes: hypercall_page @ 156
> /sys/kernel/notes: xen_hypercall_set_trap_table @ 156
> /sys/kernel/notes: startup_xen @ 132
> 
> Signed-off-by: Kees Cook <keescook@xxxxxxxxxxxx>
> ---
> Cc: "Tobin C. Harding" <me@xxxxxxxx>
> Cc: Tycho Andersen <tycho@tycho.pizza>
> Cc: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
> Cc: Guixiong Wei <guixiongwei@xxxxxxxxx>
> Cc: linux-hardening@xxxxxxxxxxxxxxx
> ---
>  scripts/leaking_addresses.pl | 53 ++++++++++++++++++++++++++++++++++++
>  1 file changed, 53 insertions(+)

Nice!

Acked-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>