[PATCH RFC 31/43] x86/modules: Adapt module loading for PIE support

From: Hou Wenlong
Date: Fri Apr 28 2023 - 05:55:18 EST

Next message: Hou Wenlong: "[PATCH RFC 26/43] x86/pie: Add .data.rel.* sections into link script"
Previous message: Hou Wenlong: "[PATCH RFC 21/43] x86/ftrace: Adapt assembly for PIE support"
In reply to: Hou Wenlong: "Re: [PATCH RFC 21/43] x86/ftrace: Adapt assembly for PIE support"
Next in thread: Ard Biesheuvel: "Re: [PATCH RFC 31/43] x86/modules: Adapt module loading for PIE support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Adapt module loading to support PIE relocations. No GOT is generared for
module, all the GOT entry of got references in module should exist in
kernel GOT. Currently, there is only one usable got reference for
__fentry__().

Signed-off-by: Hou Wenlong <houwenlong.hwl@xxxxxxxxxxxx>
Cc: Thomas Garnier <thgarnie@xxxxxxxxxxxx>
Cc: Lai Jiangshan <jiangshan.ljs@xxxxxxxxxxxx>
Cc: Kees Cook <keescook@xxxxxxxxxxxx>
---
arch/x86/include/asm/sections.h | 5 +++++
arch/x86/kernel/module.c | 27 +++++++++++++++++++++++++++
2 files changed, 32 insertions(+)

diff --git a/arch/x86/include/asm/sections.h b/arch/x86/include/asm/sections.h
index a6e8373a5170..dc1c2b08ec48 100644
--- a/arch/x86/include/asm/sections.h
+++ b/arch/x86/include/asm/sections.h
@@ -12,6 +12,11 @@ extern char __end_rodata_aligned[];

#if defined(CONFIG_X86_64)
extern char __end_rodata_hpage_align[];
+
+#ifdef CONFIG_X86_PIE
+extern char __start_got[], __end_got[];
+#endif
+
#endif

extern char __end_of_kernel_reserve[];
diff --git a/arch/x86/kernel/module.c b/arch/x86/kernel/module.c
index 84ad0e61ba6e..051f88e6884e 100644
--- a/arch/x86/kernel/module.c
+++ b/arch/x86/kernel/module.c
@@ -129,6 +129,18 @@ int apply_relocate(Elf32_Shdr *sechdrs,
return 0;
}
#else /*X86_64*/
+#ifdef CONFIG_X86_PIE
+static u64 find_got_kernel_entry(Elf64_Sym *sym, const Elf64_Rela *rela)
+{
+ u64 *pos;
+
+ for (pos = (u64 *)__start_got; pos < (u64 *)__end_got; pos++)
+ if (*pos == sym->st_value)
+ return (u64)pos + rela->r_addend;
+ return 0;
+}
+#endif
+
static int __write_relocate_add(Elf64_Shdr *sechdrs,
const char *strtab,
unsigned int symindex,
@@ -171,6 +183,7 @@ static int __write_relocate_add(Elf64_Shdr *sechdrs,
case R_X86_64_64:
size = 8;
break;
+#ifndef CONFIG_X86_PIE
case R_X86_64_32:
if (val != *(u32 *)&val)
goto overflow;
@@ -181,6 +194,13 @@ static int __write_relocate_add(Elf64_Shdr *sechdrs,
goto overflow;
size = 4;
break;
+#else
+ case R_X86_64_GOTPCREL:
+ val = find_got_kernel_entry(sym, rel);
+ if (!val)
+ goto unexpected_got_reference;
+ fallthrough;
+#endif
case R_X86_64_PC32:
case R_X86_64_PLT32:
val -= (u64)loc;
@@ -214,11 +234,18 @@ static int __write_relocate_add(Elf64_Shdr *sechdrs,
}
return 0;

+#ifdef CONFIG_X86_PIE
+unexpected_got_reference:
+ pr_err("Target got entry doesn't exist in kernel got, loc %p\n", loc);
+ return -ENOEXEC;
+#else
overflow:
pr_err("overflow in relocation type %d val %Lx\n",
(int)ELF64_R_TYPE(rel[i].r_info), val);
pr_err("`%s' likely not compiled with -mcmodel=kernel\n",
me->name);
+#endif
+
return -ENOEXEC;
}

--
2.31.1

Next message: Hou Wenlong: "[PATCH RFC 26/43] x86/pie: Add .data.rel.* sections into link script"
Previous message: Hou Wenlong: "[PATCH RFC 21/43] x86/ftrace: Adapt assembly for PIE support"
In reply to: Hou Wenlong: "Re: [PATCH RFC 21/43] x86/ftrace: Adapt assembly for PIE support"
Next in thread: Ard Biesheuvel: "Re: [PATCH RFC 31/43] x86/modules: Adapt module loading for PIE support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]