[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RFC: Audit external function called indirectly via GOT

To: Florian Weimer <fw@deneb.enyo.de>
Subject: Re: RFC: Audit external function called indirectly via GOT
From: "H.J. Lu" <hjl.tools@gmail.com>
Date: Thu, 22 Mar 2018 04:14:19 -0700
Authentication-results: sourceware.org; auth=none
Cc: "Carlos O'Donell" <carlos@redhat.com>, Generic System V Application Binary Interface <generic-abi@googlegroups.com>, gnu-gabi@sourceware.org
Delivered-to: listarch-gnu-gabi@sourceware.org
Delivered-to: mailing list gnu-gabi@sourceware.org
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=oRXx+wXzAreAzOjql0iWhCbVc5HBPc1iJBvK5P+qong=; b=bQR9mRI9NSGa83JaJglAR31HfnItdpmRmDFiMCK7Vp/L1I0na8EdDKiFIRZMQU4kTd JIldp5NWdRzj+cdFOU/t3QafcdxyRDRGSPLlLK2ZoQM9GdC9ugLGzpyxyEne7Hvd9YfG V18dQfIhvxu0Y9pLxz7B3dAt4qZS/3DsVBFH0t5d8JCSj3s91nbzmRAjpwiWumf+w0RY EVCVicrfFZ/AWLLoMgWCPgkfASSnTt6x12VWpAe6g/GE05gIpR4tXZW49Nzfr1b+lRUS 6h+qMdA3i7qD30E8FgDn7Wt3imaTZ7tf2E7FsTLQezDFNOpI0lOaLzIxywQCHVTTyo7F yRTg==
In-reply-to: <87po3wo589.fsf@mid.deneb.enyo.de>
List-help: <mailto:gnu-gabi-help@sourceware.org>
List-id: <gnu-gabi.sourceware.org>
List-post: <mailto:gnu-gabi@sourceware.org>
List-subscribe: <mailto:gnu-gabi-subscribe@sourceware.org>
Mailing-list: contact gnu-gabi-help@sourceware.org; run by ezmlm
References: <20180317133115.GA4681@gmail.com> <ba9013ec-7c77-9a3d-d474-3f5f4670d093@redhat.com> <CAMe9rOq3_U_T88+j8teyGRrrFoHWbvS=D+hHSBHZ01gQTWy=Hw@mail.gmail.com> <87370txhr1.fsf@mid.deneb.enyo.de> <3a203b82-1247-5538-4848-92c9227cc77e@redhat.com> <87po3wo589.fsf@mid.deneb.enyo.de>
Sender: gnu-gabi-owner@sourceware.org

On Thu, Mar 22, 2018 at 1:59 AM, Florian Weimer <fw@deneb.enyo.de> wrote:
> * Carlos O'Donell:
>
>> On 03/21/2018 03:04 PM, Florian Weimer wrote:
>>> * H. J. Lu:
>>>
>>>>> Could we ship a template for the PLT entries in ld.so instead?  And if
>>>>> needed, map it from the file together with an address array, like this?
>>>>
>>>> This won't work since linker needs to know exactly PLT layout to generate
>>>> JUMP_SLOT relocations for LD_AUDIT.
>>>
>>> Why would we need JUMP_SLOT relocations?  Couldn't we install suitable
>>> interceptors for GLOB_DAT relocations instead, as long as they resolve
>>> to external function symbols?
>>
>> I think your suggestion might work, but why alter the existing
>> behaviour which users expect and is documented in countless linker
>> text books?
>
> If you have references, please add them to the glibc implementation or
> the wiki.  It would certainly help those who are trying to work on the
> code.
>
> My understanding is that the whole thing is quite underdocumented.
> For LD_AUDIT in particular, we only have the Solaris documentation,
> and that's for an independent implementation.
>
>> Existing tooling to process such relocations and entries could
>> remain unchanged and we would continue to support LD_AUDIT.
>
> My understanding is that H.J.'s proposal requires changes when running
> in non-audit mode.  It certainly requires relinking all binaries,
> perhaps even with special flags.

Please see

https://github.com/hjl-tools/glibc/tree/hjl/plt/audit

and

https://github.com/hjl-tools/binutils-gdb/tree/users/hjl/plt/audit

for my glibc and binutils implementations.  My changes are relatively
small and have minimum overhead when LD_AUDIT isn't used.

> Using ld.so-generated thunks for all GLOB_DAT function symbol
> relocations would happen in audit mode only and should work with
> existing binaries which were built with -Wl,-z,now.

It means to put parts of ld into ld.so.  This is a much bigger change.

-- 
H.J.

References:
- RFC: Audit external function called indirectly via GOT
  - From: "H.J. Lu" <hjl.tools@gmail.com>
- Re: RFC: Audit external function called indirectly via GOT
  - From: Florian Weimer <fweimer@redhat.com>
- Re: RFC: Audit external function called indirectly via GOT
  - From: "H.J. Lu" <hjl.tools@gmail.com>
- Re: RFC: Audit external function called indirectly via GOT
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: RFC: Audit external function called indirectly via GOT
  - From: Carlos O'Donell <carlos@redhat.com>
- Re: RFC: Audit external function called indirectly via GOT
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: Re: RFC: Audit external function called indirectly via GOT
Next by Date: Re: RFC: Audit external function called indirectly via GOT
Previous by thread: Re: RFC: Audit external function called indirectly via GOT
Next by thread: Re: RFC: Audit external function called indirectly via GOT
Index(es):
- Date
- Thread