darfink
commented
4 years ago It seems as if there's no easy workaround nor fix for this. Until a better solution presents itself, I've written an ld drop-in replacement/wrapper that respects the max_prot field of the segprot parameter.
In my ~/.cargo/config I've added the following configuration (replace <home>):
[target.x86_64-apple-darwin]
rustflags = [
"-C", "link-arg=-fuse-ld=<home>/.bin/ld",
"-C", "link-arg=-Wl,-segprot,__TEXT,rwx,rx",
]I believe Apple deliberately removed the ability to provide a value for max_prot, and therefore they are not likely to offer an alternative. In the meantime, let's hope LLVM's lld Mach-O implementation matures so it becomes a viable alternative.
The tests no longer work on macOS Catalina due changes of their linker (
ld64). The default value of themaxprotattribute of the__TEXTsegment in the Mach-O header has been changed.Previously
maxprotdefault value was0x7(PROT_READ | PROT_WRITE | PROT_EXEC). The default value has now been changed to0x5(PROT_READ | PROT_EXEC).This means that
mprotectcannot make any region that resides within__TEXTwritable.In theory, this should be resolved by providing the linker flag
-Wl,-segprot,__TEXT,rwx,rxbut it seems as if themax_protfield is ignored (ref:-segprot,<segment>,<max_prot>,<init_prot>).In practice
max_prot&init_protare both set to the value of segprot'sinit_prot.To top it all off, this becomes even worse due to the fact that
init_protcannot be set torwx(macOS refuses to execute a file which has a writable__TEXT(init_prot)attribute).A shoddy workaround is to manually modify and set
__TEXT(max_prot)to0x7after linking.NOTE: This relies on the default
__TEXT(max_prot)offset to be0xA0(the default withld64).To be continued...
See https://github.com/agiledragon/gomonkey/issues/10 See https://github.com/Zeex/subhook/issues/45