This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
llvm/
-
include/llvm/Object/
-
llvm/
-
Object/
1/2
ELF.h
-
test/tools/llvm-objdump/ELF/
-
tools/
-
llvm-objdump/
-
ELF/
3/3
verneed-invalid.test
-
verneed.test
-
tools/llvm-objdump/
-
llvm-objdump/
2/5
ELFDump.cpp

Differential D133751

[llvm-objdump] Change printSymbolVersionDependency to use ELFFile API
ClosedPublic

Authored by MaskRay on Sep 13 2022, 12:12 AM.

Download Raw Diff

Details

Reviewers

jhenderson
raj.khem

Commits

rG25394c9d10e7: [llvm-objdump] Change printSymbolVersionDependency to use ELFFile API

Summary

When .gnu.version_r is empty (allowed by readelf but warned by objdump),
llvm-objdump -p may decode the next section as .gnu.version_r and may crash due
to out-of-bounds C string reference. ELFFile<ELFT>::getVersionDependencies
handles 0-entry .gnu.version_r gracefully. Just use it.

Fix https://github.com/llvm/llvm-project/issues/57707

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

MaskRay created this revision.Sep 13 2022, 12:12 AM

Herald added a project: Restricted Project. · View Herald TranscriptSep 13 2022, 12:12 AM

Herald added subscribers: StephenFan, rupprecht, emaste. · View Herald Transcript

MaskRay requested review of this revision.Sep 13 2022, 12:12 AM

Herald added a project: Restricted Project. · View Herald TranscriptSep 13 2022, 12:12 AM

Herald added a subscriber: llvm-commits. · View Herald Transcript

Harbormaster completed remote builds in B186309: Diff 459662.Sep 13 2022, 12:54 AM

jhenderson added inline comments.Sep 13 2022, 1:06 AM

llvm/include/llvm/Object/ELF.h
1041	Should this be a separate patch?
llvm/test/tools/llvm-objdump/ELF/verneed-invalid.test
2	Similarly, this test seems unrelated to the commit message?
llvm/tools/llvm-objdump/ELFDump.cpp
301–306	Nit: this local variable seems a little bit unnecessary?
352–356	These variables are only used in the `else` part now. Could we move them?

MaskRay added inline comments.Sep 13 2022, 10:58 AM

llvm/include/llvm/Object/ELF.h
1041	Without this change llvm-objdump -p output may contain `\0` separated strings, which are incorrect. The only other use `llvm/tools/llvm-readobj/ELFDumper.cpp:4706` avoids the problem by using `VN.File.data()`.
llvm/test/tools/llvm-objdump/ELF/verneed-invalid.test
2	I need a file to test `reportWarning(toString(V.takeError()), FileName);` The change is like rewriting an existing functionality. Personally I think the needed tests should be like as if we do not have the functionality yet.
llvm/tools/llvm-objdump/ELFDump.cpp
301–306	It avoids repeated outs() call at the cost of one extra line. I think it is worthwhile.
352–356	They can but they aren't so related to this change. We can rewrite printSymbolVersionDefinition to use the llvm/lib/Object API as well then these variables can go away with that change.

The patch looks good to me. I have tested it in yocto world builds, it fixes the problem and there are no new regressions.

Looks good, thanks!

llvm/test/tools/llvm-objdump/ELF/verneed-invalid.test
2	The change is like rewriting an existing functionality. Personally I think the needed tests should be like as if we do not have the functionality yet. Agreed. If anything, I'd have added this as a prerequisite patch, but it's fine as-is. Thanks!
llvm/tools/llvm-objdump/ELFDump.cpp
352–356	Sounds reasonable.

This revision is now accepted and ready to land.Sep 14 2022, 12:04 AM

Thanks. I'll split verneed-invalid.test

MaskRay marked 2 inline comments as done.Sep 14 2022, 12:28 PM

Closed by commit rG25394c9d10e7: [llvm-objdump] Change printSymbolVersionDependency to use ELFFile API (authored by MaskRay). · Explain WhySep 14 2022, 12:30 PM

This revision was automatically updated to reflect the committed changes.

MaskRay added a commit: rG25394c9d10e7: [llvm-objdump] Change printSymbolVersionDependency to use ELFFile API.

Revision Contents

Path

Size

llvm/

include/

llvm/

Object/

ELF.h

2 lines

test/

tools/

llvm-objdump/

ELF/

verneed-invalid.test

4 lines

verneed.test

20 lines

tools/

llvm-objdump/

ELFDump.cpp

39 lines

Diff 460183

llvm/include/llvm/Object/ELF.h

Show First 20 Lines • Show All 1,032 Lines • ▼ Show 20 Lines	const Elf_Verneed *Verneed =
reinterpret_cast<const Elf_Verneed *>(VerneedBuf);		reinterpret_cast<const Elf_Verneed *>(VerneedBuf);

VerNeed &VN = *Ret.emplace(Ret.end());		VerNeed &VN = *Ret.emplace(Ret.end());
VN.Version = Verneed->vn_version;		VN.Version = Verneed->vn_version;
VN.Cnt = Verneed->vn_cnt;		VN.Cnt = Verneed->vn_cnt;
VN.Offset = VerneedBuf - Start;		VN.Offset = VerneedBuf - Start;

if (Verneed->vn_file < StrTab.size())		if (Verneed->vn_file < StrTab.size())
VN.File = std::string(StrTab.drop_front(Verneed->vn_file));		VN.File = std::string(StrTab.data() + Verneed->vn_file);
		jhendersonUnsubmitted Not Done Reply Inline Actions Should this be a separate patch? jhenderson: Should this be a separate patch?
		MaskRayAuthorUnsubmitted Done Reply Inline Actions Without this change llvm-objdump -p output may contain `\0` separated strings, which are incorrect. The only other use `llvm/tools/llvm-readobj/ELFDumper.cpp:4706` avoids the problem by using `VN.File.data()`. MaskRay: Without this change llvm-objdump -p output may contain `\0` separated strings, which are…
else		else
VN.File = ("<corrupt vn_file: " + Twine(Verneed->vn_file) + ">").str();		VN.File = ("<corrupt vn_file: " + Twine(Verneed->vn_file) + ">").str();

const uint8_t *VernauxBuf = VerneedBuf + Verneed->vn_aux;		const uint8_t *VernauxBuf = VerneedBuf + Verneed->vn_aux;
for (unsigned J = 0; J < Verneed->vn_cnt; ++J) {		for (unsigned J = 0; J < Verneed->vn_cnt; ++J) {
if (reinterpret_cast<uintptr_t>(VernauxBuf) % sizeof(uint32_t) != 0)		if (reinterpret_cast<uintptr_t>(VernauxBuf) % sizeof(uint32_t) != 0)
return createError("invalid " + describe(*this, Sec) +		return createError("invalid " + describe(*this, Sec) +
": found a misaligned auxiliary entry at offset 0x" +		": found a misaligned auxiliary entry at offset 0x" +
▲ Show 20 Lines • Show All 200 Lines • Show Last 20 Lines

llvm/test/tools/llvm-objdump/ELF/verneed-invalid.test

	# RUN: yaml2obj %s -o %t			# RUN: yaml2obj %s -o %t
	# RUN: llvm-objdump -p %t 2>&1 \| FileCheck %s --check-prefix=BROKEN-AUX -DFILE=%t			# RUN: llvm-objdump -p %t 2>&1 \| FileCheck %s --check-prefix=BROKEN-AUX -DFILE=%t
				jhendersonUnsubmitted Done Reply Inline Actions Similarly, this test seems unrelated to the commit message? jhenderson: Similarly, this test seems unrelated to the commit message?
				MaskRayAuthorUnsubmitted Done Reply Inline Actions I need a file to test `reportWarning(toString(V.takeError()), FileName);` The change is like rewriting an existing functionality. Personally I think the needed tests should be like as if we do not have the functionality yet. MaskRay: I need a file to test `reportWarning(toString(V.takeError()), FileName);` The change is like…
				jhendersonUnsubmitted Done Reply Inline Actions The change is like rewriting an existing functionality. Personally I think the needed tests should be like as if we do not have the functionality yet. Agreed. If anything, I'd have added this as a prerequisite patch, but it's fine as-is. Thanks! jhenderson: > The change is like rewriting an existing functionality. Personally I think the needed tests…

	# BROKEN-AUX: Version References:			# BROKEN-AUX: Version References:
	# BROKEN-AUX-NEXT: required from :			# BROKEN-AUX-NEXT: warning: '[[FILE]]': invalid SHT_GNU_verneed section with index 2: found a misaligned auxiliary entry at offset 0x11
	# BROKEN-AUX-NEXT: 0x00000000 0x00 00			# BROKEN-AUX-NOT: {{.}}

	--- !ELF			--- !ELF
	FileHeader:			FileHeader:
	Class: ELFCLASS64			Class: ELFCLASS64
	Data: ELFDATA2LSB			Data: ELFDATA2LSB
	Type: ET_EXEC			Type: ET_EXEC
	Sections:			Sections:
	- Name: .gnu.version			- Name: .gnu.version
	Show All 11 Lines

llvm/test/tools/llvm-objdump/ELF/verneed.test

Show All 40 Lines	Dependencies:
Entries:		Entries:
- Name: v3		- Name: v3
Hash: 4567		Hash: 4567
Flags: 12		Flags: 12
Other: 2		Other: 2
DynamicSymbols:		DynamicSymbols:
- Name: f1		- Name: f1
Binding: STB_GLOBAL		Binding: STB_GLOBAL

		# RUN: yaml2obj --docnum=2 %s -o %t.empty
		# RUN: llvm-objdump -p %t.empty 2>&1 \| FileCheck %s --check-prefix=EMPTY --implicit-check-not=warning:

		# EMPTY: Version References:
		# EMPTY-NOT: {{.}}

		--- !ELF
		FileHeader:
		Class: ELFCLASS64
		Data: ELFDATA2LSB
		Type: ET_EXEC
		Machine: EM_X86_64
		Sections:
		- Name: .gnu.version_r
		Type: SHT_GNU_verneed
		Flags: [ SHF_ALLOC ]
		DynamicSymbols:
		- Name: f1
		Binding: STB_GLOBAL

llvm/tools/llvm-objdump/ELFDump.cpp

Show First 20 Lines • Show All 276 Lines • ▼ Show 20 Lines	outs() << "off " << format(Fmt, (uint64_t)Phdr.p_offset) << "vaddr "
<< "memsz " << format(Fmt, (uint64_t)Phdr.p_memsz) << "flags "		<< "memsz " << format(Fmt, (uint64_t)Phdr.p_memsz) << "flags "
<< ((Phdr.p_flags & ELF::PF_R) ? "r" : "-")		<< ((Phdr.p_flags & ELF::PF_R) ? "r" : "-")
<< ((Phdr.p_flags & ELF::PF_W) ? "w" : "-")		<< ((Phdr.p_flags & ELF::PF_W) ? "w" : "-")
<< ((Phdr.p_flags & ELF::PF_X) ? "x" : "-") << "\n";		<< ((Phdr.p_flags & ELF::PF_X) ? "x" : "-") << "\n";
}		}
}		}

template <class ELFT>		template <class ELFT>
static void printSymbolVersionDependency(ArrayRef<uint8_t> Contents,		static void printSymbolVersionDependency(StringRef FileName,
StringRef StrTab) {		const ELFFile<ELFT> &Obj,
		const typename ELFT::Shdr &Sec) {
outs() << "\nVersion References:\n";		outs() << "\nVersion References:\n";

const uint8_t *Buf = Contents.data();		auto WarningHandler = [&](const Twine &Msg) {
while (Buf) {		reportWarning(Msg, FileName);
auto Verneed = reinterpret_cast<const typename ELFT::Verneed >(Buf);		return Error::success();
outs() << " required from "		};
<< StringRef(StrTab.drop_front(Verneed->vn_file).data()) << ":\n";		Expected<std::vector<VerNeed>> V =
		Obj.getVersionDependencies(Sec, WarningHandler);
const uint8_t *BufAux = Buf + Verneed->vn_aux;		if (!V) {
while (BufAux) {		reportWarning(toString(V.takeError()), FileName);
auto Vernaux = reinterpret_cast<const typename ELFT::Vernaux >(BufAux);		return;
outs() << " "
<< format("0x%08" PRIx32 " ", (uint32_t)Vernaux->vna_hash)
<< format("0x%02" PRIx16 " ", (uint16_t)Vernaux->vna_flags)
<< format("%02" PRIu16 " ", (uint16_t)Vernaux->vna_other)
<< StringRef(StrTab.drop_front(Vernaux->vna_name).data()) << '\n';
BufAux = Vernaux->vna_next ? BufAux + Vernaux->vna_next : nullptr;
}		}
Buf = Verneed->vn_next ? Buf + Verneed->vn_next : nullptr;
		raw_fd_ostream &OS = outs();
		for (const VerNeed &VN : *V) {
		OS << " required from " << VN.File << ":\n";
		for (const VernAux &Aux : VN.AuxV)
		OS << format(" 0x%08x 0x%02x %02u %s\n", Aux.Hash, Aux.Flags,
		Aux.Other, Aux.Name.c_str());
		jhendersonUnsubmitted Not Done Reply Inline Actions Nit: this local variable seems a little bit unnecessary? jhenderson: Nit: this local variable seems a little bit unnecessary?
		MaskRayAuthorUnsubmitted Done Reply Inline Actions It avoids repeated outs() call at the cost of one extra line. I think it is worthwhile. MaskRay: It avoids repeated outs() call at the cost of one extra line. I think it is worthwhile.
}		}
}		}

template <class ELFT>		template <class ELFT>
static void printSymbolVersionDefinition(const typename ELFT::Shdr &Shdr,		static void printSymbolVersionDefinition(const typename ELFT::Shdr &Shdr,
ArrayRef<uint8_t> Contents,		ArrayRef<uint8_t> Contents,
StringRef StrTab) {		StringRef StrTab) {
outs() << "\nVersion definitions:\n";		outs() << "\nVersion definitions:\n";
Show All 29 Lines	static void printSymbolVersionInfo(const ELFFile<ELFT> &Elf,
StringRef FileName) {		StringRef FileName) {
ArrayRef<typename ELFT::Shdr> Sections =		ArrayRef<typename ELFT::Shdr> Sections =
unwrapOrError(Elf.sections(), FileName);		unwrapOrError(Elf.sections(), FileName);
for (const typename ELFT::Shdr &Shdr : Sections) {		for (const typename ELFT::Shdr &Shdr : Sections) {
if (Shdr.sh_type != ELF::SHT_GNU_verneed &&		if (Shdr.sh_type != ELF::SHT_GNU_verneed &&
Shdr.sh_type != ELF::SHT_GNU_verdef)		Shdr.sh_type != ELF::SHT_GNU_verdef)
continue;		continue;

ArrayRef<uint8_t> Contents =		ArrayRef<uint8_t> Contents =
unwrapOrError(Elf.getSectionContents(Shdr), FileName);		unwrapOrError(Elf.getSectionContents(Shdr), FileName);
const typename ELFT::Shdr *StrTabSec =		const typename ELFT::Shdr *StrTabSec =
unwrapOrError(Elf.getSection(Shdr.sh_link), FileName);		unwrapOrError(Elf.getSection(Shdr.sh_link), FileName);
StringRef StrTab = unwrapOrError(Elf.getStringTable(*StrTabSec), FileName);		StringRef StrTab = unwrapOrError(Elf.getStringTable(*StrTabSec), FileName);
		jhendersonUnsubmitted Not Done Reply Inline Actions These variables are only used in the `else` part now. Could we move them? jhenderson: These variables are only used in the `else` part now. Could we move them?
		MaskRayAuthorUnsubmitted Done Reply Inline Actions They can but they aren't so related to this change. We can rewrite printSymbolVersionDefinition to use the llvm/lib/Object API as well then these variables can go away with that change. MaskRay: They can but they aren't so related to this change. We can rewrite printSymbolVersionDefinition…
		jhendersonUnsubmitted Not Done Reply Inline Actions Sounds reasonable. jhenderson: Sounds reasonable.

if (Shdr.sh_type == ELF::SHT_GNU_verneed)		if (Shdr.sh_type == ELF::SHT_GNU_verneed)
printSymbolVersionDependency<ELFT>(Contents, StrTab);		printSymbolVersionDependency<ELFT>(FileName, Elf, Shdr);
else		else
printSymbolVersionDefinition<ELFT>(Shdr, Contents, StrTab);		printSymbolVersionDefinition<ELFT>(Shdr, Contents, StrTab);
}		}
}		}

void objdump::printELFFileHeader(const object::ObjectFile *Obj) {		void objdump::printELFFileHeader(const object::ObjectFile *Obj) {
if (const auto *ELFObj = dyn_cast<ELF32LEObjectFile>(Obj))		if (const auto *ELFObj = dyn_cast<ELF32LEObjectFile>(Obj))
printProgramHeaders(ELFObj->getELFFile(), Obj->getFileName());		printProgramHeaders(ELFObj->getELFFile(), Obj->getFileName());
Show All 29 Lines