This is an archive of the discontinued LLVM Phabricator instance.

[ELF] - Do not crash when unable to parse ELF object file.
ClosedPublic

Authored by grimar on Oct 4 2016, 5:30 AM.

Download Raw Diff

Details

Reviewers

ruiu
davide
• rafael

Commits

rGb7aec331255e: [ELF] - Do not crash when unable to parse ELF object file.
rLLD283532: [ELF] - Do not crash when unable to parse ELF object file.
rL283532: [ELF] - Do not crash when unable to parse ELF object file.

Summary

createELFObj() may call error(...), for example when file is too short.
In that case header is not set and following line lead to crash:

EMachine = ELFObj.getHeader()->e_machine;

Patch fixes the issue.

Diff Detail

Repository: rL LLVM

Event Timeline

grimar updated this revision to Diff 73464.Oct 4 2016, 5:30 AM

grimar retitled this revision from to [ELF] - Do not crash when unable to parse ELF object file..

grimar updated this object.

grimar added reviewers: ruiu, • rafael, davide.

grimar added subscribers: llvm-commits, grimar, evgeny777.

grimar added inline comments.

ELF/InputFiles.cpp
60 ↗	(On Diff #73464)	I wonder may be we can just make this fatal() ? It is not called when file not found, but only when there is something wrong with it.

ruiu added inline comments.Oct 4 2016, 9:25 AM

ELF/InputFiles.cpp
73–74 ↗	(On Diff #73464)	This seems very weird. HasError should be used at major checkpoints, and we shouldn't have so many checkpoints. It is on the other hand called for every instantiation of the class.

grimar added inline comments.Oct 5 2016, 1:05 AM

ELF/InputFiles.cpp
73–74 ↗	(On Diff #73464)	What about my comment above about switching error -> fatal in createELFObj() then ? This should be consistent with latest ELF parsing hardening as we use fatal for broken objects and createELFObj() now call error() even if ELF is broken, what I think is the only possible reason for fail.

ruiu added inline comments.Oct 5 2016, 1:52 PM

ELF/InputFiles.cpp
73–74 ↗	(On Diff #73464)	That's probably better. We shouldn't do too much to try to recover from unrecoverable errors.

Addressed review comments.

LGTM

This revision is now accepted and ready to land.Oct 6 2016, 1:15 PM

LGTM

Closed by commit rL283532: [ELF] - Do not crash when unable to parse ELF object file. (authored by grimar). · Explain WhyOct 7 2016, 2:01 AM

This revision was automatically updated to reflect the committed changes.

Revision Contents

Path

Size

lld/

trunk/

ELF/

Error.h

1 line

Error.cpp

4 lines

InputFiles.cpp

2 lines

test/

ELF/

invalid/

Inputs/

too-short.elf

too-short.s

5 lines

Diff 73894

lld/trunk/ELF/Error.h

	Show All 39 Lines
	void error(const Twine &Msg);			void error(const Twine &Msg);
	void error(std::error_code EC, const Twine &Prefix);			void error(std::error_code EC, const Twine &Prefix);

	template <typename T> void error(const ErrorOr<T> &V, const Twine &Prefix) {			template <typename T> void error(const ErrorOr<T> &V, const Twine &Prefix) {
	error(V.getError(), Prefix);			error(V.getError(), Prefix);
	}			}

	LLVM_ATTRIBUTE_NORETURN void fatal(const Twine &Msg);			LLVM_ATTRIBUTE_NORETURN void fatal(const Twine &Msg);
				LLVM_ATTRIBUTE_NORETURN void fatal(std::error_code EC, const Twine &Prefix);

	template <class T> T check(ErrorOr<T> E) {			template <class T> T check(ErrorOr<T> E) {
	if (auto EC = E.getError())			if (auto EC = E.getError())
	fatal(EC.message());			fatal(EC.message());
	return std::move(*E);			return std::move(*E);
	}			}

	template <class T> T check(Expected<T> E) {			template <class T> T check(Expected<T> E) {
	Show All 21 Lines

lld/trunk/ELF/Error.cpp

Show First 20 Lines • Show All 41 Lines • ▼ Show 20 Lines	void elf::error(std::error_code EC, const Twine &Prefix) {
error(Prefix + ": " + EC.message());		error(Prefix + ": " + EC.message());
}		}

void elf::fatal(const Twine &Msg) {		void elf::fatal(const Twine &Msg) {
*ErrorOS << Msg << "\n";		*ErrorOS << Msg << "\n";
exit(1);		exit(1);
}		}

		void elf::fatal(std::error_code EC, const Twine &Prefix) {
		fatal(Prefix + ": " + EC.message());
		}

} // namespace lld		} // namespace lld

lld/trunk/ELF/InputFiles.cpp

Show First 20 Lines • Show All 51 Lines • ▼ Show 20 Lines	if (!F->ArchiveName.empty())
return (F->ArchiveName + "(" + F->getName() + ")").str();		return (F->ArchiveName + "(" + F->getName() + ")").str();
return F->getName();		return F->getName();
}		}

template <class ELFT> static ELFFile<ELFT> createELFObj(MemoryBufferRef MB) {		template <class ELFT> static ELFFile<ELFT> createELFObj(MemoryBufferRef MB) {
std::error_code EC;		std::error_code EC;
ELFFile<ELFT> F(MB.getBuffer(), EC);		ELFFile<ELFT> F(MB.getBuffer(), EC);
if (EC)		if (EC)
error(EC, "failed to read " + MB.getBufferIdentifier());		fatal(EC, "failed to read " + MB.getBufferIdentifier());
return F;		return F;
}		}

template <class ELFT> static ELFKind getELFKind() {		template <class ELFT> static ELFKind getELFKind() {
if (ELFT::TargetEndianness == support::little)		if (ELFT::TargetEndianness == support::little)
return ELFT::Is64Bits ? ELF64LEKind : ELF32LEKind;		return ELFT::Is64Bits ? ELF64LEKind : ELF32LEKind;
return ELFT::Is64Bits ? ELF64BEKind : ELF32BEKind;		return ELFT::Is64Bits ? ELF64BEKind : ELF32BEKind;
}		}
▲ Show 20 Lines • Show All 822 Lines • Show Last 20 Lines

lld/trunk/test/ELF/invalid/Inputs/too-short.elf

This is a binary file.

Property	Old Value	New Value
svn:mime-type	null	application/octet-stream

lld/trunk/test/ELF/invalid/too-short.s

				# REQUIRES: x86

				## too-short.elf file is a truncated ELF.
				# RUN: not ld.lld %S/Inputs/too-short.elf -o %t 2>&1 \| FileCheck %s
				# CHECK: failed to read