This is the mail archive of the
libc-alpha@sourceware.org
mailing list for the glibc project.
Re: Library auditing interface stability?
- From: Steven Munroe <munroesj at linux dot vnet dot ibm dot com>
- To: "Carlos O'Donell" <carlos at redhat dot com>
- Cc: tulioqm at br dot ibm dot com, Florian Weimer <fweimer at redhat dot com>, Ulrich Drepper <drepper at gmail dot com>, GNU C Library <libc-alpha at sourceware dot org>
- Date: Thu, 05 May 2016 16:29:19 -0500
- Subject: Re: Library auditing interface stability?
- Authentication-results: sourceware.org; auth=none
- References: <57169D19 dot 2030109 at redhat dot com> <CAOPLpQeV+hGcBZosGgN=8zZ9aycoFVG_BW9r9xDLQ4L0V8o=sA at mail dot gmail dot com> <5721C7C2 dot 1080805 at redhat dot com> <572262D0 dot 6050803 at redhat dot com> <1462460184 dot 9421 dot 3 dot camel at oc7878010663> <572B6D65 dot 1040502 at redhat dot com>
- Reply-to: munroesj at linux dot vnet dot ibm dot com
On Thu, 2016-05-05 at 11:57 -0400, Carlos O'Donell wrote:
> On 05/05/2016 10:56 AM, Steven Munroe wrote:
> > On Thu, 2016-04-28 at 15:21 -0400, Carlos O'Donell wrote:
> >> On 04/28/2016 04:20 AM, Florian Weimer wrote:
> >>> On 04/20/2016 04:24 PM, Ulrich Drepper wrote:
> >>>> On Tue, Apr 19, 2016 at 5:03 PM, Carlos O'Donell
> >>>> <carlos@redhat.com> wrote:
> >>>>> In particular the La_*_regs and La_*_retval which contains
> >>>>> additional registers as we expand the supported ISAs.
> >>>>
> >>>> la_version is there to preserve unlimited backward compatibility.
> >>>
> >>> We have not used this mechanism when we added support for additional
> >>> registers to be passed to the PLT callbacks. Looking at commits
> >>> 14c5cbabc2d11004ab223ae5eae761ddf83ef99e and
> >>> 5cdd1989d1d2f135d02e66250f37ba8e767f9772, there is no way for an
> >>> audit module to notice if these additional fields are maintained by
> >>> glibc.
> >>
> >> I think we should have bumped the la_version number for all changes
> >> to the structure for any architecture.
> >>
> >> Do we fix this by bumping LAV_CURRENT?
> >>
> >> diff --git a/elf/link.h b/elf/link.h
> >> index f448141..cbf94a3 100644
> >> --- a/elf/link.h
> >> +++ b/elf/link.h
> >> @@ -95,8 +95,13 @@ struct link_map
> >>
> >> #ifdef __USE_GNU
> >>
> >> -/* Version numbers for la_version handshake interface. */
> >> -#define LAV_CURRENT 1
> >> +/* Version numbers for la_version handshake interface.
> >> + 1 - Initial implementation.
> >> + 2 - Added lrv_bnd0 and lrv_bnd1 to La_i86_retval.
> >> + 3 - Added lr_v[24,25,26,27,28,29,30,31] to La_s390_64_regs, and
> >> + La_s390_32_regs. Added lrv_v24 to La_s390_64_retval and
> >> + La_s390_64_retval. */
> >> +#define LAV_CURRENT 3
> >>
> >> /* Activity types signaled through la_activity. */
> >> enum
> >> ---
> >>
> >> We can't fix audit modules in the field which return 1.
> >>
> >> We can fix newly compiled audit modules, making them expect
> >> a LAV_CURRENT of 3, such that they can't be run with older
> >> LAV_CURRENT 1 glibc which doesn't have BIND on x86 or
> >> VSX on s390?
> >>
> >
> > I am not sure if the audit modules need to now or care about PPC VSX or
> > TAR, but if memory serves. VSX was added after the audit API.
>
> Is VSX or TAR part of the procedure call sequence?
>
> The La_*_regs structure allows an audit module to modify incoming
> registers to the function using the PLT hook being provided by the
> audit infrastructure.
>
Not VSX or TAR but VMX regs are, which GLIBC was library audit
added? ...