| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 9 Jun 2014 13:45:56 +0800
From: Real Name <enjoymindful@...il.com>
To: Richard Weinberger <richard@....at>
Cc: user-mode-linux-devel@...ts.sourceforge.net,
user-mode-linux-user@...ts.sourceforge.net,
linux-kernel@...r.kernel.org, jdike@...toit.com
Subject: Re: [PATCH] remove csum_partial_copy_generic_i386 to clean up
exception table
On Thu, Jun 05, 2014 at 11:49:49PM +0200, Richard Weinberger wrote:
> Am 05.06.2014 06:15, schrieb Honggang Li:
> > arch/x86/um/checksum_32.S had been copy & paste from x86. When build
> > x86 uml, csum_partial_copy_generic_i386 mess up the exception table.
> > In fact, exception table dose not work in uml kernel.
>
> Are you sure that exception tables do not work on UML?
> I said, I'm not sure. Can you please find out?
I think we can't test the exception table with linux-next uml kernel, because
the exception table is broken.
The *old* linux-2.4.xx uml kernel has a good exception table.
1) install one redhat-9.0 virtual machine
2) build and booting into linux-2.4.25. You can't run uml kernel with default
redhat-9.0 kernel, because there is one bug.
3) build linux-2.4.20 uml kernel (with uml-patch-2.4.20-8)
4) run linux-2.4.20/linux ubda=/root/root_fs.rh-7.2-server.pristine.20020312 mem=64m
(The root_fs and uml-patch are available from the *old* uml website.)
The exception table records of the old kernel belong to csum_partial_copy_generic_i386 too.
# objjdump --full-contents --section=__ex_table arch/um/sys-i386/checksum.o
arch/um/sys-i386/checksum.o: file format elf32-i386
Contents of section __ex_table:
0000 c7000000 00000000 cd000000 1b000000 ................
0010 e4000000 00000000 e6000000 00000000 ................
0020 eb000000 1b000000 ef000000 1b000000 ................
0030 f2000000 00000000 f5000000 00000000 ................
0040 fa000000 1b000000 ff000000 1b000000 ................
0050 02010000 00000000 05010000 00000000 ................
0060 0a010000 1b000000 0f010000 1b000000 ................
0070 12010000 00000000 15010000 00000000 ................
0080 1a010000 1b000000 1f010000 1b000000 ................
0090 3c010000 00000000 40010000 1b000000 <.......@.......
00a0 58010000 00000000 5e010000 1b000000 X.......^.......
00b0 69010000 00000000 6b010000 1b000000 i.......k......
[root@...9 linux-2.4.20]# objdump --full-contents --section=__ex_table arch/um/kern>
arch/um/kernel/checksum.o: file format elf32-i386
[root@...9 linux-2.4.20]# objdump --full-contents --section=__ex_table linux
linux: file format elf32-i386
Contents of section __ex_table:
a0203c20 5b680ea0 2cd31ba0 61680ea0 47d31ba0 [h..,...ah..G...
a0203c30 78680ea0 2cd31ba0 7a680ea0 2cd31ba0 xh..,...zh..,...
a0203c40 7f680ea0 47d31ba0 83680ea0 47d31ba0 .h..G....h..G...
a0203c50 86680ea0 2cd31ba0 89680ea0 2cd31ba0 .h..,....h..,...
a0203c60 8e680ea0 47d31ba0 93680ea0 47d31ba0 .h..G....h..G...
a0203c70 96680ea0 2cd31ba0 99680ea0 2cd31ba0 .h..,....h..,...
a0203c80 9e680ea0 47d31ba0 a3680ea0 47d31ba0 .h..G....h..G...
a0203c90 a6680ea0 2cd31ba0 a9680ea0 2cd31ba0 .h..,....h..,...
a0203ca0 ae680ea0 47d31ba0 b3680ea0 47d31ba0 .h..G....h..G...
a0203cb0 d0680ea0 2cd31ba0 d4680ea0 47d31ba0 .h..,....h..G...
a0203cc0 ec680ea0 2cd31ba0 f2680ea0 47d31ba0 .h..,....h..G...
a0203cd0 fd680ea0 2cd31ba0 ff680ea0 47d31ba0 .h..,....h..G...
**************************************************************************
The exception table of linux-3.1x.y is broken. The complier tool chain create
bad exception table. I think this should be a bug.
linux-3.12.6]$ objdump --full-contents --section=__ex_table ./linux
./linux: file format elf32-i386
Contents of section __ex_table:
82a5048 3e6fdcff bcbaf6ff 396fdcff b4baf6ff >o......9o......
82a5058 336fdcff acbaf6ff 306fdcff bfbaf6ff 3o......0o......
82a5068 2b6fdcff 9cbaf6ff 286fdcff afbaf6ff +o......(o......
82a5078 236fdcff 8cbaf6ff 206fdcff 9fbaf6ff #o...... o......
82a5088 1b6fdcff 7cbaf6ff 186fdcff 8fbaf6ff .o..|....o......
82a5098 136fdcff 6cbaf6ff 106fdcff 7fbaf6ff .o..l....o......
82a50a8 0b6fdcff 5cbaf6ff 086fdcff 6fbaf6ff .o..\....o..o...
82a50b8 036fdcff 4cbaf6ff 006fdcff 5fbaf6ff .o..L....o.._...
82a50c8 fb6edcff 3cbaf6ff f86edcff 4fbaf6ff .n..<....n..O...
82a50d8 f36edcff 2cbaf6ff f06edcff 3fbaf6ff .n..,....n..?...
82a50e8 eb6edcff 1cbaf6ff e86edcff 2fbaf6ff .n.......n../...
82a50f8 e36edcff 0cbaf6ff e06edcff 1fbaf6ff .n.......n......
82a5108 db6edcff fcb9f6ff d86edcff 0fbaf6ff .n.......n......
82a5118 d36edcff ecb9f6ff d06edcff ffb9f6ff .n.......n......
82a5128 cb6edcff dcb9f6ff c86edcff efb9f6ff .n.......n......
82a5138 c36edcff ccb9f6ff c06edcff dfb9f6ff .n.......n......
82a5148 bb6edcff bcb9f6ff b86edcff cfb9f6ff .n.......n......
82a5158 ce6edcff acb9f6ff cc6edcff bfb9f6ff .n.......n......
82a5168 cf6edcff 9cb9f6ff c96edcff afb9f6ff .n.......n......
>
> In arch/um/kernel/trap.c:segv() we have the mechanism for it:
> else if (!is_user && arch_fixup(ip, regs))
> goto out;
>
The kcov analysis proof that this piece of code never been executed.
> The interesting question is, is this by design or was it just copy&pasted from x86
> many moons ago? :)
Hi, Jeff
Could you please answer this question, as you are the author? thanks
>
> > And csum_partial_copy_generic_i386 never been called. So, delete it.
>
> I like such clean ups. :-)
Could you please pick up the attached patch. I update the comment of the patch.
Thank you.
>
> Thanks,
> //richard
View attachment "0001-uml-remove-csum_partial_copy_generic_i386.patch" of type "text/x-diff" (5828 bytes)
Powered by blists - more mailing lists