In my discussion of the effect of ASLR on DLL rebasing, I wondered how vtables and other function pointers were handled in position-independent code. Commenter kantos replied, “It appears from a cursory google search that…”
I wanted to find out more, so I did some searching but couldn’t find anything, so I asked for help with that cursory search.
“It was GCC PIC C++ which didn’t get me to the answer directly, I had to go through the SO question that was the second result to get to this document by Ulrich Drepper, and then skim through until page 29 where it describes what’s done in the virtual table case.”
Okay, so I had to issue a Google search, click the second result, then go to the second answer (not the accepted answer), click a link enigmatically called “the document referenced by 0x6adb015”, download the resulting 45-page PDF, and read through to page 29.
This doesn’t strike me as a “cursory search”.
0 comments