This is an archive of the discontinued LLVM Phabricator instance.

Differential D30804

[llvm-readobj] Only print the real size of the note
ClosedPublic

Authored by phosek on Mar 9 2017, 6:55 PM.

Details

Reviewers
mcgrathr
Commits
rG02185c04b233: [llvm-readobj] Only print the real size of the note
rL299576: [llvm-readobj] Only print the real size of the note
Summary

Note payloads are padded to a multiple of 4 bytes in size, but the size of the string that should be print can be smaller e.g. the n_descsz field in gold's version note is 9, so that's the whole size of the string that should be printed. The padding is part of the format of a SHT_NOTE section or PT_NOTE segment, but it's not part of the note itself.

Printing the extra null bytes may confuse some tools, e.g. when the llvm-readobj is sent to grep, it treats the output as binary because it contains a null byte.

Diff Detail

Repository
rL LLVM

Event Timeline

phosek created this revision.Mar 9 2017, 6:55 PM
phosek added a reviewer: mcgrathr.Mar 10 2017, 4:41 PM
mcgrathr accepted this revision.Mar 11 2017, 1:44 PM

LGTM.

This tool really should validate all its input's size fields, but that's a separate issue from this change and needs to be done here for n_namesz as well as n_descsz, and presumably lots of other places throughout the tool(s). binutils and elfutils have had volunteers doing input fuzzing that found many such holes. LLVM's ELF tools could use some of that too.

Neither binutils nor elfutils does anything about unprintable bytes in the contents of NT_GNU_GOLD_VERSION, but both do stop printing at the first '\0' (so if they'd had the printing-the-padding bug too it might have gone unnoticed since it wouldn't had affected the output when the first padding byte was zero, which in practice it always is). I'm willing to call it a feature to print the whole string rather than truncating it at the first '\0', but I'll point out the difference with other tools for the record.

This revision is now accepted and ready to land.Mar 11 2017, 1:44 PM
Closed by commit rL299576: [llvm-readobj] Only print the real size of the note (authored by phosek). · Explain WhyApr 5 2017, 12:08 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
llvm/
trunk/
tools/
llvm-readobj/
11 lines

Diff 94266

llvm/trunk/tools/llvm-readobj/ELFDumper.cpp

Show First 20 LinesShow All 3,364 Lines▼ Show 20 Linesstatic std::string getFreeBSDNoteTypeName(const uint32_t NT) {
std::string string; std::string string;
raw_string_ostream OS(string); raw_string_ostream OS(string);
OS << format("Unknown note type (0x%08x)", NT); OS << format("Unknown note type (0x%08x)", NT);
return string; return string;
} }
template <typename ELFT> template <typename ELFT>
static void printGNUNote(raw_ostream &OS, uint32_t NoteType, static void printGNUNote(raw_ostream &OS, uint32_t NoteType,
ArrayRef<typename ELFFile<ELFT>::Elf_Word> Words) { ArrayRef<typename ELFFile<ELFT>::Elf_Word> Words,
size_t Size) {
switch (NoteType) { switch (NoteType) {
default: default:
return; return;
case ELF::NT_GNU_ABI_TAG: { case ELF::NT_GNU_ABI_TAG: {
static const char *OSNames[] = { static const char *OSNames[] = {
"Linux", "Hurd", "Solaris", "FreeBSD", "NetBSD", "Syllable", "NaCl", "Linux", "Hurd", "Solaris", "FreeBSD", "NetBSD", "Syllable", "NaCl",
}; };
StringRef OSName = "Unknown"; StringRef OSName = "Unknown";
if (Words[0] < array_lengthof(OSNames)) if (Words[0] < array_lengthof(OSNames))
OSName = OSNames[Words[0]]; OSName = OSNames[Words[0]];
uint32_t Major = Words[1], Minor = Words[2], Patch = Words[3]; uint32_t Major = Words[1], Minor = Words[2], Patch = Words[3];
if (Words.size() < 4) if (Words.size() < 4)
OS << " <corrupt GNU_ABI_TAG>"; OS << " <corrupt GNU_ABI_TAG>";
else else
OS << " OS: " << OSName << ", ABI: " << Major << "." << Minor << "." OS << " OS: " << OSName << ", ABI: " << Major << "." << Minor << "."
<< Patch; << Patch;
break; break;
} }
case ELF::NT_GNU_BUILD_ID: { case ELF::NT_GNU_BUILD_ID: {
OS << " Build ID: "; OS << " Build ID: ";
ArrayRef<uint8_t> ID(reinterpret_cast<const uint8_t *>(Words.data()), ArrayRef<uint8_t> ID(reinterpret_cast<const uint8_t *>(Words.data()), Size);
Words.size() * 4);
for (const auto &B : ID) for (const auto &B : ID)
OS << format_hex_no_prefix(B, 2); OS << format_hex_no_prefix(B, 2);
break; break;
} }
case ELF::NT_GNU_GOLD_VERSION: case ELF::NT_GNU_GOLD_VERSION:
OS << " Version: " OS << " Version: "
<< StringRef(reinterpret_cast<const char *>(Words.data()), << StringRef(reinterpret_cast<const char *>(Words.data()), Size);
Words.size() * 4);
break; break;
} }
OS << '\n'; OS << '\n';
} }
template <class ELFT> template <class ELFT>
void GNUStyle<ELFT>::printNotes(const ELFFile<ELFT> *Obj) { void GNUStyle<ELFT>::printNotes(const ELFFile<ELFT> *Obj) {
Show All 27 Lines while (P < E) {
Name = Name =
StringRef(reinterpret_cast<const char *>(&Words[3]), NameSize - 1); StringRef(reinterpret_cast<const char *>(&Words[3]), NameSize - 1);
OS << " " << Name << std::string(22 - NameSize, ' ') OS << " " << Name << std::string(22 - NameSize, ' ')
<< format_hex(DescriptorSize, 10) << '\t'; << format_hex(DescriptorSize, 10) << '\t';
if (Name == "GNU") { if (Name == "GNU") {
OS << getGNUNoteTypeName(Type) << '\n'; OS << getGNUNoteTypeName(Type) << '\n';
printGNUNote<ELFT>(OS, Type, Descriptor); printGNUNote<ELFT>(OS, Type, Descriptor, DescriptorSize);
} else if (Name == "FreeBSD") { } else if (Name == "FreeBSD") {
OS << getFreeBSDNoteTypeName(Type) << '\n'; OS << getFreeBSDNoteTypeName(Type) << '\n';
} else { } else {
OS << "Unknown note type: (" << format_hex(Type, 10) << ')'; OS << "Unknown note type: (" << format_hex(Type, 10) << ')';
} }
OS << '\n'; OS << '\n';
P = P + 3 * sizeof(Elf_Word) + alignTo<4>(NameSize) + P = P + 3 * sizeof(Elf_Word) + alignTo<4>(NameSize) +
▲ Show 20 LinesShow All 397 LinesShow Last 20 Lines