This is an archive of the discontinued LLVM Phabricator instance.

Differential D25368

[Object/ELF] - Do not crash on invalid Header->e_shoff value.
ClosedPublic

Authored by grimar on Oct 7 2016, 6:56 AM.

Details

Reviewers
ruiu
davide
rafael
Commits
rGe4dce5ce3ecc: [Object/ELF] - Do not crash on invalid Header->e_shoff value.
rL283740: [Object/ELF] - Do not crash on invalid Header->e_shoff value.
Summary

sections_begin() may return unalignment pointer when Header->e_shoff isinvalid.
That may result in a crash in clients, for example we have one in LLD:

assert((PtrWord & ~PointerBitMask) == 0 &&
       "Pointer is not sufficiently aligned");

fails when trying to push_back Elf_Shdr* (unaligned) into TinyPtrVector.

Patch forces address to be aligned.

Diff Detail

Event Timeline

grimar updated this revision to Diff 73927.Oct 7 2016, 6:56 AM
grimar retitled this revision from to [Object/ELF] - Do not crash on invalid Header->e_shoff value..
grimar updated this object.
grimar added reviewers: ruiu, rafael, davide.
grimar added subscribers: llvm-commits, grimar, evgeny777.
grimar abandoned this revision.Oct 7 2016, 7:13 AM

gnu archives seems does not like such innovations. I`ll reimplement this to do checks from lld side.

grimar reclaimed this revision.Oct 7 2016, 8:38 AM

Will update in a minute.

grimar updated this revision to Diff 73937.Oct 7 2016, 8:43 AM
  • As suggested by Rafael, check only alignment of Header->e_shoff.
rafael accepted this revision.Oct 7 2016, 10:49 AM
rafael edited edge metadata.

LGTM with a nit.

include/llvm/Object/ELF.h
370

Can you use Elf_Shdr instead of uint in AlignOf? After all that is what we return a pointer to.

This revision is now accepted and ready to land.Oct 7 2016, 10:49 AM
grimar closed this revision.Oct 10 2016, 4:01 AM

r283740

grimar mentioned this in D25462: [Object/ELF] - Check Header->e_shoff value earlier and do not crash..Oct 11 2016, 3:06 AM

Revision Contents

PathSize
include/
llvm/
Object/
ELF.h
ELF.h (revision 283533)
2 lines
test/
Object/
Inputs/
invalid-sections-address-alignment.x86-64
invalid-sections-address-alignment.x86-64 (nonexistent)
invalid.test
invalid.test (revision 283533)
4 lines

Diff 73937

include/llvm/Object/ELF.h

Show First 20 LinesShow All 361 Lines▼ Show 20 Linesstatic bool compareAddr(uint64_t VAddr, const Elf_Phdr_Impl<ELFT> *Phdr) {
return VAddr < Phdr->p_vaddr; return VAddr < Phdr->p_vaddr;
} }
template <class ELFT> template <class ELFT>
const typename ELFFile<ELFT>::Elf_Shdr *ELFFile<ELFT>::section_begin() const { const typename ELFFile<ELFT>::Elf_Shdr *ELFFile<ELFT>::section_begin() const {
if (Header->e_shentsize != sizeof(Elf_Shdr)) if (Header->e_shentsize != sizeof(Elf_Shdr))
report_fatal_error( report_fatal_error(
"Invalid section header entry size (e_shentsize) in ELF header"); "Invalid section header entry size (e_shentsize) in ELF header");
if (Header->e_shoff & (AlignOf<typename ELFT::uint>::Alignment - 1))
rafaelUnsubmitted
Not Done
ReplyInline Actions

Can you use Elf_Shdr instead of uint in AlignOf? After all that is what we return a pointer to.

rafael: Can you use Elf_Shdr instead of uint in AlignOf? After all that is what we return a pointer to.
report_fatal_error("Invalid address alignment of section headers");
return reinterpret_cast<const Elf_Shdr *>(base() + Header->e_shoff); return reinterpret_cast<const Elf_Shdr *>(base() + Header->e_shoff);
} }
template <class ELFT> template <class ELFT>
const typename ELFFile<ELFT>::Elf_Shdr *ELFFile<ELFT>::section_end() const { const typename ELFFile<ELFT>::Elf_Shdr *ELFFile<ELFT>::section_end() const {
return section_begin() + getNumSections(); return section_begin() + getNumSections();
} }
▲ Show 20 LinesShow All 103 LinesShow Last 20 Lines

test/Object/Inputs/invalid-sections-address-alignment.x86-64

  • This is a binary file.
PropertyOld ValueNew Value
svn:mime-type nullapplication/octet-stream
\ No newline at end of property

test/Object/invalid.test

Show First 20 LinesShow All 58 Lines▼ Show 20 Lines
RUN: FileCheck --check-prefix=INVALID-EXT-SYMTAB-INDEX %s RUN: FileCheck --check-prefix=INVALID-EXT-SYMTAB-INDEX %s
INVALID-EXT-SYMTAB-INDEX: Invalid symbol table index INVALID-EXT-SYMTAB-INDEX: Invalid symbol table index
RUN: not llvm-readobj -r %p/Inputs/invalid-relocation-sec-sh_offset.elf-i386 2>&1 | \ RUN: not llvm-readobj -r %p/Inputs/invalid-relocation-sec-sh_offset.elf-i386 2>&1 | \
RUN: FileCheck --check-prefix=INVALID-RELOC-SH-OFFSET %s RUN: FileCheck --check-prefix=INVALID-RELOC-SH-OFFSET %s
RUN: not llvm-readobj -r %p/Inputs/invalid-relocation-sec-sh_offset.elf-x86-64 2>&1 | \ RUN: not llvm-readobj -r %p/Inputs/invalid-relocation-sec-sh_offset.elf-x86-64 2>&1 | \
RUN: FileCheck --check-prefix=INVALID-RELOC-SH-OFFSET %s RUN: FileCheck --check-prefix=INVALID-RELOC-SH-OFFSET %s
INVALID-RELOC-SH-OFFSET: Invalid data was encountered while parsing the file INVALID-RELOC-SH-OFFSET: Invalid data was encountered while parsing the file
RUN: not llvm-readobj -t %p/Inputs/invalid-sections-address-alignment.x86-64 2>&1 | \
RUN: FileCheck --check-prefix=INVALID-SEC-ADDRESS-ALIGNMENT %s
INVALID-SEC-ADDRESS-ALIGNMENT: Invalid address alignment of section headers