summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 20aba55)
raw | patch | inline | side by side (parent: 20aba55)
| author | Michael Paquier <michael@paquier.xyz> | |
| Wed, 8 Feb 2023 04:09:49 +0000 (13:09 +0900) | ||
| committer | Michael Paquier <michael@paquier.xyz> | |
| Wed, 8 Feb 2023 04:09:49 +0000 (13:09 +0900) |
Try to disable ASLR when building in EXEC_BACKEND mode, to avoid random
memory mapping failures while testing. For developer use only, no
effect on regular builds.
This has been originally applied as of f3e7806 for v15~, but
recently-added buildfarm member gokiburi tests this configuration on
older branches as well, causing it to fail randomly as ASLR would be
enabled.
Suggested-by: Andres Freund <andres@anarazel.de>
Tested-by: Bossart, Nathan <bossartn@amazon.com>
Discussion: https://postgr.es/m/20210806032944.m4tz7j2w47mant26%40alap3.anarazel.de
Backpatch-through: 12
memory mapping failures while testing. For developer use only, no
effect on regular builds.
This has been originally applied as of f3e7806 for v15~, but
recently-added buildfarm member gokiburi tests this configuration on
older branches as well, causing it to fail randomly as ASLR would be
enabled.
Suggested-by: Andres Freund <andres@anarazel.de>
Tested-by: Bossart, Nathan <bossartn@amazon.com>
Discussion: https://postgr.es/m/20210806032944.m4tz7j2w47mant26%40alap3.anarazel.de
Backpatch-through: 12
| configure | patch | blob | blame | history | |
| configure.in | patch | blob | blame | history | |
| src/bin/pg_ctl/pg_ctl.c | patch | blob | blame | history | |
| src/common/exec.c | patch | blob | blame | history | |
| src/include/pg_config.h.in | patch | blob | blame | history | |
| src/include/port.h | patch | blob | blame | history | |
| src/test/regress/pg_regress.c | patch | blob | blame | history | |
| src/tools/msvc/Solution.pm | patch | blob | blame | history |
diff --git a/configure b/configure
index d2db555e9e7a8895b85cdda8e506582256bc34aa..19a991aeca7598e89fa5ab8bcbc9b851a41c848c 100755 (executable)
--- a/configure
+++ b/configure
fi
-for ac_header in atomic.h copyfile.h execinfo.h getopt.h ifaddrs.h langinfo.h mbarrier.h poll.h sys/epoll.h sys/event.h sys/ipc.h sys/prctl.h sys/procctl.h sys/pstat.h sys/resource.h sys/select.h sys/sem.h sys/shm.h sys/sockio.h sys/tas.h sys/un.h termios.h ucred.h wctype.h
+for ac_header in atomic.h copyfile.h execinfo.h getopt.h ifaddrs.h langinfo.h mbarrier.h poll.h sys/epoll.h sys/event.h sys/ipc.h sys/personality.h sys/prctl.h sys/procctl.h sys/pstat.h sys/resource.h sys/select.h sys/sem.h sys/shm.h sys/sockio.h sys/tas.h sys/un.h termios.h ucred.h wctype.h
do :
as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh`
ac_fn_c_check_header_mongrel "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default"
diff --git a/configure.in b/configure.in
index 31b4e2b08c8a8969c911a38a11093539c1668d92..3e2767ae52ee5691fb4c294e8f2e5f4e67991529 100644 (file)
--- a/configure.in
+++ b/configure.in
sys/epoll.h
sys/event.h
sys/ipc.h
+ sys/personality.h
sys/prctl.h
sys/procctl.h
sys/pstat.h
index 8ab9ecb78f625841335044179ae5bab33ae1b0d3..01b815d4a0768cdab13df3663376460d341e520c 100644 (file)
--- a/src/bin/pg_ctl/pg_ctl.c
+++ b/src/bin/pg_ctl/pg_ctl.c
fflush(stdout);
fflush(stderr);
+#ifdef EXEC_BACKEND
+ pg_disable_aslr();
+#endif
+
pm_pid = fork();
if (pm_pid < 0)
{
diff --git a/src/common/exec.c b/src/common/exec.c
index 8f1147b68a0535edf667397fc82d9955e4c9077a..7f0142fb475102f45e0dfc3cd34cd1b27a72213a 100644 (file)
--- a/src/common/exec.c
+++ b/src/common/exec.c
#include <sys/wait.h>
#include <unistd.h>
+#ifdef EXEC_BACKEND
+#if defined(HAVE_SYS_PERSONALITY_H)
+#include <sys/personality.h>
+#elif defined(HAVE_SYS_PROCCTL_H)
+#include <sys/procctl.h>
+#endif
+#endif
+
/* Inhibit mingw CRT's auto-globbing of command line arguments */
#if defined(WIN32) && !defined(_MSC_VER)
extern int _CRT_glob = 0; /* 0 turns off globbing; 1 turns it on */
}
}
+#ifdef EXEC_BACKEND
+/*
+ * For the benefit of PostgreSQL developers testing EXEC_BACKEND on Unix
+ * systems (code paths normally exercised only on Windows), provide a way to
+ * disable address space layout randomization, if we know how on this platform.
+ * Otherwise, backends may fail to attach to shared memory at the fixed address
+ * chosen by the postmaster. (See also the macOS-specific hack in
+ * sysv_shmem.c.)
+ */
+int
+pg_disable_aslr(void)
+{
+#if defined(HAVE_SYS_PERSONALITY_H)
+ return personality(ADDR_NO_RANDOMIZE);
+#elif defined(HAVE_SYS_PROCCTL_H) && defined(PROC_ASLR_FORCE_DISABLE)
+ int data = PROC_ASLR_FORCE_DISABLE;
+
+ return procctl(P_PID, 0, PROC_ASLR_CTL, &data);
+#else
+ errno = ENOSYS;
+ return -1;
+#endif
+}
+#endif
+
#ifdef WIN32
/*
index 2711c2ce9bd8205009a911ee4213d2d7b175efa0..2cd221b85a0143f2381453bac23f6e48b3b235b9 100644 (file)
/* Define to 1 if you have the <sys/ipc.h> header file. */
#undef HAVE_SYS_IPC_H
+/* Define to 1 if you have the <sys/personality.h> header file. */
+#undef HAVE_SYS_PERSONALITY_H
+
/* Define to 1 if you have the <sys/prctl.h> header file. */
#undef HAVE_SYS_PRCTL_H
diff --git a/src/include/port.h b/src/include/port.h
index 0c3c8d14e76b557f325e0d6640e9173bf65c1159..70b193657e430f8c3bcd4a42ae86d84efe1bed26 100644 (file)
--- a/src/include/port.h
+++ b/src/include/port.h
/* Doesn't belong here, but this is used with find_other_exec(), so... */
#define PG_BACKEND_VERSIONSTR "postgres (PostgreSQL) " PG_VERSION "\n"
+#ifdef EXEC_BACKEND
+/* Disable ASLR before exec, for developer builds only (in exec.c) */
+extern int pg_disable_aslr(void);
+#endif
+
#if defined(WIN32) || defined(__CYGWIN__)
#define EXE ".exe"
index 25683a78413151c7e2e2efa3614a10c3fbc3edc7..36cc1707bfa6b939f24fb70a2c580697c9df955c 100644 (file)
if (logfile)
fflush(logfile);
+#ifdef EXEC_BACKEND
+ pg_disable_aslr();
+#endif
+
pid = fork();
if (pid == -1)
{
index 243d0b64fd0009c11d6ad022c7a4a05c5090d210..4147e8ad2604bf6da5d97ad5ebd67c3850ea93bf 100644 (file)
HAVE_SYS_EPOLL_H => undef,
HAVE_SYS_EVENT_H => undef,
HAVE_SYS_IPC_H => undef,
+ HAVE_SYS_PERSONALITY_H => undef,
HAVE_SYS_PRCTL_H => undef,
HAVE_SYS_PROCCTL_H => undef,
HAVE_SYS_PSTAT_H => undef,