diff options
| author | H.J. Lu <hjl.tools@gmail.com> | 2022-02-09 15:51:22 -0800 |
|---|---|---|
| committer | H.J. Lu <hjl.tools@gmail.com> | 2022-02-11 10:24:54 -0800 |
| commit | ebb191adac4ab45498dec0bfaac62f0a33537ba4 (patch) | |
| tree | 34999ecb8d01541fde94b8a70b3164d80682a516 /ld | |
| parent | 29ba33db77f22a54d97db90cb87c39126efad3db (diff) | |
| download | gdb-ebb191adac4ab45498dec0bfaac62f0a33537ba4.zip gdb-ebb191adac4ab45498dec0bfaac62f0a33537ba4.tar.gz gdb-ebb191adac4ab45498dec0bfaac62f0a33537ba4.tar.bz2 | |
x86: Disallow invalid relocation against protected symbol
I am checking this into master and will backport it to 2.38 branch.
H.J
----
On x86, GCC 12 supports -mno-direct-extern-access to enable canonical
reference to protected function and disable copy relocation. With
-mno-direct-extern-access, the canonical protected function symbols must
be accessed via canonical reference and the protected data symbols in
shared libraries are non-copyable. Under glibc 2.35, non-canonical
reference to the canonical protected function will get the run-time error:
./y: internal_f: ./libfoo.so: non-canonical reference to canonical protected function
and copy relocations against the non-copyable protected symbols will get
the run-time error:
./x: internal_i: ./libfoo.so: copy relocation against non-copyable protected symbol
Update x86 linker to disallow non-canonical reference to the canonical
protected function:
ld: plt.o: non-canonical reference to canonical protected function `internal_f' in libfoo.so
ld: failed to set dynamic section sizes: bad value
and copy relocation against the non-copyable protected symbol:
ld: main.o: copy relocation against non-copyable protected symbol `internal_i' in libfoo.so
at link-time.
bfd/
PR ld/28875
* elf-properties.c (_bfd_elf_parse_gnu_properties): Don't skip
shared libraries for GNU_PROPERTY_1_NEEDED_INDIRECT_EXTERN_ACCESS.
* elf32-i386.c (elf_i386_scan_relocs): Disallow non-canonical
reference to canonical protected function.
* elf64-x86-64.c (elf_x86_64_scan_relocs): Likewise.
* elfxx-x86.c (elf_x86_allocate_dynrelocs): Don't allow copy
relocation against non-copyable protected symbol.
ld/
PR ld/28875
* testsuite/ld-i386/i386.exp: Check non-canonical reference to
canonical protected function and check copy relocation against
non-copyable protected symbol.
* testsuite/ld-i386/pr21997-1.err: New file.
* testsuite/ld-i386/pr28875.err: Likewise.
* testsuite/ld-i386/pr28875a.c: Likewise.
* testsuite/ld-i386/pr28875b.c: Likewise.
* testsuite/ld-x86-64/pr21997-1a.err: Updated.
* testsuite/ld-x86-64/pr21997-1b.err: Likewise.
* testsuite/ld-x86-64/pr28875-data.err: New file.
* testsuite/ld-x86-64/pr28875-func.err: Likewise.
* testsuite/ld-x86-64/x86-64.exp: Check non-canonical reference
to canonical protected function and check copy relocation against
non-copyable protected symbol.
Diffstat (limited to 'ld')
| -rw-r--r-- | ld/testsuite/ld-i386/i386.exp | 33 | ||||
| -rw-r--r-- | ld/testsuite/ld-i386/pr21997-1.err | 2 | ||||
| -rw-r--r-- | ld/testsuite/ld-i386/pr28875.err | 2 | ||||
| -rw-r--r-- | ld/testsuite/ld-i386/pr28875a.c | 5 | ||||
| -rw-r--r-- | ld/testsuite/ld-i386/pr28875b.c | 7 | ||||
| -rw-r--r-- | ld/testsuite/ld-x86-64/pr21997-1a.err | 2 | ||||
| -rw-r--r-- | ld/testsuite/ld-x86-64/pr21997-1b.err | 2 | ||||
| -rw-r--r-- | ld/testsuite/ld-x86-64/pr28875-data.err | 2 | ||||
| -rw-r--r-- | ld/testsuite/ld-x86-64/pr28875-func.err | 2 | ||||
| -rw-r--r-- | ld/testsuite/ld-x86-64/x86-64.exp | 27 |
10 files changed, 63 insertions, 21 deletions
diff --git a/ld/testsuite/ld-i386/i386.exp b/ld/testsuite/ld-i386/i386.exp index 82e14ab..d997c75 100644 --- a/ld/testsuite/ld-i386/i386.exp +++ b/ld/testsuite/ld-i386/i386.exp @@ -1288,6 +1288,30 @@ if { [isnative] {} \ "pr22842.so" \ ] \ + [list \ + "Build pr28875.so" \ + "-shared -Wl,-z,indirect-extern-access" \ + "-fPIC" \ + { pr28875a.c } \ + {} \ + "pr28875.so" \ + ] \ + [list \ + "Build pr28875" \ + "$NOPIE_LDFLAGS -Wl,--no-as-needed tmpdir/pr28875.so" \ + "$NOPIE_CFLAGS" \ + { pr28875b.c } \ + {{error_output "pr28875.err"}} \ + "pr28875" \ + ] \ + [list \ + "Build pr21997-1" \ + "$NOPIE_LDFLAGS -Wl,--no-as-needed,-z,notext tmpdir/pr21997-1.so" \ + "$NOPIE_CFLAGS -Wa,-mx86-used-note=yes" \ + { pr21997-1b.c } \ + {{error_output "pr21997-1.err"}} \ + "pr21997-1" \ + ] \ ] run_ld_link_exec_tests [list \ @@ -1344,15 +1368,6 @@ if { [isnative] "-fPIC" \ ] \ [list \ - "Run pr21997-1" \ - "$NOPIE_LDFLAGS -Wl,--no-as-needed,-z,notext tmpdir/pr21997-1.so" \ - "-Wa,-mx86-used-note=yes" \ - { pr21997-1b.c } \ - "pr21997-1" \ - "pass.out" \ - "$NOPIE_CFLAGS" \ - ] \ - [list \ "Run pr21997-1 (PIC 1)" \ "$NOPIE_LDFLAGS -Wl,--no-as-needed tmpdir/pr21997-1.so" \ "-Wa,-mx86-used-note=yes" \ diff --git a/ld/testsuite/ld-i386/pr21997-1.err b/ld/testsuite/ld-i386/pr21997-1.err new file mode 100644 index 0000000..e46f1ce --- /dev/null +++ b/ld/testsuite/ld-i386/pr21997-1.err @@ -0,0 +1,2 @@ +.*: tmpdir/pr21997-1b.o: copy relocation against non-copyable protected symbol `protected' in tmpdir/pr21997-1.so +#... diff --git a/ld/testsuite/ld-i386/pr28875.err b/ld/testsuite/ld-i386/pr28875.err new file mode 100644 index 0000000..46f6f47 --- /dev/null +++ b/ld/testsuite/ld-i386/pr28875.err @@ -0,0 +1,2 @@ +.*: tmpdir/pr28875b.o: non-canonical reference to canonical protected function `internal_f' in tmpdir/pr28875.so +#... diff --git a/ld/testsuite/ld-i386/pr28875a.c b/ld/testsuite/ld-i386/pr28875a.c new file mode 100644 index 0000000..d24cf29 --- /dev/null +++ b/ld/testsuite/ld-i386/pr28875a.c @@ -0,0 +1,5 @@ +__attribute__ ((visibility("protected"))) +void +internal_f (void) +{ +} diff --git a/ld/testsuite/ld-i386/pr28875b.c b/ld/testsuite/ld-i386/pr28875b.c new file mode 100644 index 0000000..2c0381d --- /dev/null +++ b/ld/testsuite/ld-i386/pr28875b.c @@ -0,0 +1,7 @@ +extern void internal_f (void); + +int +main () +{ + return (int) &internal_f; +} diff --git a/ld/testsuite/ld-x86-64/pr21997-1a.err b/ld/testsuite/ld-x86-64/pr21997-1a.err index e57ebd1..e46f1ce 100644 --- a/ld/testsuite/ld-x86-64/pr21997-1a.err +++ b/ld/testsuite/ld-x86-64/pr21997-1a.err @@ -1,2 +1,2 @@ -.*relocation R_X86_64_PC32 against protected symbol `protected' can not be used when making a P(D|I)E object; recompile with -fPIE +.*: tmpdir/pr21997-1b.o: copy relocation against non-copyable protected symbol `protected' in tmpdir/pr21997-1.so #... diff --git a/ld/testsuite/ld-x86-64/pr21997-1b.err b/ld/testsuite/ld-x86-64/pr21997-1b.err index a99fc1d..af028b7 100644 --- a/ld/testsuite/ld-x86-64/pr21997-1b.err +++ b/ld/testsuite/ld-x86-64/pr21997-1b.err @@ -1,2 +1,2 @@ -.*relocation R_X86_64_32S against protected symbol `protected' can not be used when making a P(D|I)E object; recompile with -fPIE +.*: tmpdir/pr21997-1c.o: copy relocation against non-copyable protected symbol `protected' in tmpdir/pr21997-1.so #... diff --git a/ld/testsuite/ld-x86-64/pr28875-data.err b/ld/testsuite/ld-x86-64/pr28875-data.err new file mode 100644 index 0000000..62dd5b0 --- /dev/null +++ b/ld/testsuite/ld-x86-64/pr28875-data.err @@ -0,0 +1,2 @@ +.*: tmpdir/protected-data-1b.o: copy relocation against non-copyable protected symbol `protected_data_1a' in tmpdir/libprotected-data-1b.so +#... diff --git a/ld/testsuite/ld-x86-64/pr28875-func.err b/ld/testsuite/ld-x86-64/pr28875-func.err new file mode 100644 index 0000000..64e961c --- /dev/null +++ b/ld/testsuite/ld-x86-64/pr28875-func.err @@ -0,0 +1,2 @@ +.*: tmpdir/protected-func-1b.o: non-canonical reference to canonical protected function `protected_func_1a' in tmpdir/libprotected-func-2b.so +#... diff --git a/ld/testsuite/ld-x86-64/x86-64.exp b/ld/testsuite/ld-x86-64/x86-64.exp index 3bfc5e6..c6d88a9 100644 --- a/ld/testsuite/ld-x86-64/x86-64.exp +++ b/ld/testsuite/ld-x86-64/x86-64.exp @@ -1382,6 +1382,14 @@ if { [isnative] && [check_compiler_available] } { "libprotected-func-2b.so" \ ] \ [list \ + "Build protected-func-2 without PIE" \ + "$NOPIE_LDFLAGS -Wl,--no-as-needed tmpdir/libprotected-func-2b.so" \ + "$NOPIE_CFLAGS -Wa,-mx86-used-note=yes" \ + { protected-func-1b.c } \ + {{error_output "pr28875-func.err"}} \ + "protected-func-2" \ + ] \ + [list \ "Build libprotected-data-1a.so" \ "-shared -z noindirect-extern-access" \ "-fPIC -Wa,-mx86-used-note=yes" \ @@ -1402,7 +1410,7 @@ if { [isnative] && [check_compiler_available] } { "$NOPIE_LDFLAGS -Wl,--no-as-needed tmpdir/libprotected-data-1b.so" \ "$NOPIE_CFLAGS -Wa,-mx86-used-note=yes" \ { protected-data-1b.c } \ - {} \ + {{error_output "pr28875-data.err"}} \ "protected-data-1" \ ] \ [list \ @@ -1468,6 +1476,14 @@ if { [isnative] && [check_compiler_available] } { "-Wa,-mx86-used-note=yes" \ { pr25416-5d.s } \ ] \ + [list \ + "Build pr21997-1b" \ + "$NOPIE_LDFLAGS -Wl,--no-as-needed,-z,notext tmpdir/pr21997-1.so" \ + "$NOPIE_CFLAGS -Wa,-mx86-used-note=yes" \ + { pr21997-1c.c } \ + {{error_output "pr21997-1b.err"}} \ + "pr21997-1b" \ + ] \ ] run_ld_link_exec_tests [list \ @@ -1481,15 +1497,6 @@ if { [isnative] && [check_compiler_available] } { "$NOPIE_CFLAGS" \ ] \ [list \ - "Run pr21997-1b" \ - "$NOPIE_LDFLAGS -Wl,--no-as-needed,-z,notext tmpdir/pr21997-1.so" \ - "-Wa,-mx86-used-note=yes" \ - { pr21997-1c.c } \ - "pr21997-1b" \ - "pass.out" \ - "$NOPIE_CFLAGS" \ - ] \ - [list \ "Run pr25416-5a (GDesc -> IE -maddress-mode=short)" \ "$NOPIE_LDFLAGS -Wl,--no-as-needed tmpdir/pr25416-5b.so" \ "-Wa,-mx86-used-note=yes" \ |