Hi, I was going to say, "why don't you try it yourself?", but I thought I'd give it a try:
$ ./bypass Segmentation fault (core dumped) $ gdb -c bypass.core ./bypass GNU gdb 6.3 Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type "show copying" to see the conditions. There is absolutely no warranty for GDB. Type "show warranty" for details. This GDB was configured as "amd64-unknown-openbsd6.0"...(no debugging symbols found) Core was generated by `bypass'. Program terminated with signal 11, Segmentation fault. (no debugging symbols found) Loaded symbols for /home/pablomh/misc/bypass Reading symbols from /usr/lib/libc.so.89.2...done. Loaded symbols for /usr/lib/libc.so.89.2 Reading symbols from /usr/libexec/ld.so...done. Loaded symbols for /usr/libexec/ld.so #0 0x000006489a70059e in aslr_bypass1 () from /home/pablomh/misc/bypass (gdb) bt #0 0x000006489a70059e in aslr_bypass1 () from /home/pablomh/misc/bypass #1 0x000006489a70067e in main () from /home/pablomh/misc/bypass (gdb) So I don't see any leakage... Regards. Pablo On Thu, Dec 8, 2016 at 9:43 PM, minek van <[email protected]> wrote: > any news? > >> Sent: Wednesday, November 30, 2016 at 7:48 PM >> From: "minek van" <[email protected]> >> To: [email protected] >> Subject: ASLR bypass on OpenBSD >> >> Hello, >> >> older story: >> >> https://marc.info/?t=142124717700006&r=1&w=1 >> >> what happened since than? >> >> Was the randomization increased? >> >> Thank you OpenBSD! > -- Pablo Méndez Hernández
