From: Szabolcs Nagy <Szabolcs.Nagy@arm.com>
To: Sudakshina Das <Sudi.Das@arm.com>,
"binutils@sourceware.org" <binutils@sourceware.org>
Cc: nd <nd@arm.com>, "nickc@redhat.com" <nickc@redhat.com>,
Ramana Radhakrishnan <Ramana.Radhakrishnan@arm.com>
Subject: Re: [PATCH, BFD, LD, AArch64, 4/4] Add --pac-plt to enable PLTs protected with PAC.
Date: Thu, 11 Apr 2019 14:47:00 -0000 [thread overview]
Message-ID: <0fb1d193-01dd-483d-cdf2-c90398c73372@arm.com> (raw)
In-Reply-To: <b1778c1c-3b4d-39c2-0b0a-4fdac445cec4@arm.com>
On 06/03/2019 10:39, Sudakshina Das wrote:
> +static const bfd_byte elfNN_aarch64_small_plt0_pac_entry[PLT_PAC_ENTRY_SIZE] =
> +{
> + 0xf0, 0x7b, 0xbf, 0xa9, /* stp x16, x30, [sp, #-16]! */
> + 0x10, 0x00, 0x00, 0x90, /* adrp x16, (GOT+16) */
> +#if ARCH_SIZE == 64
> + 0x11, 0x0A, 0x40, 0xf9, /* ldr x17, [x16, #PLT_GOT+0x10] */
> + 0x10, 0x42, 0x00, 0x91, /* add x16, x16,#PLT_GOT+0x10 */
> +#else
> + 0x11, 0x0A, 0x40, 0xb9, /* ldr w17, [x16, #PLT_GOT+0x8] */
> + 0x10, 0x22, 0x00, 0x11, /* add w16, w16,#PLT_GOT+0x8 */
> +#endif
> + 0x9f, 0x21, 0x03, 0xd5, /* autia1716 */
> + 0x20, 0x02, 0x1f, 0xd6, /* br x17 */
> + 0x1f, 0x20, 0x03, 0xd5, /* nop */
> + 0x1f, 0x20, 0x03, 0xd5, /* nop */
> + 0x1f, 0x20, 0x03, 0xd5, /* nop */
> +};
> +
> +static const bfd_byte
> +elfNN_aarch64_small_plt0_bti_pac_entry[PLT_BTI_PAC_ENTRY_SIZE] =
> +{
> + 0x5f, 0x24, 0x03, 0xd5, /* bti c. */
> + 0xf0, 0x7b, 0xbf, 0xa9, /* stp x16, x30, [sp, #-16]! */
> + 0x10, 0x00, 0x00, 0x90, /* adrp x16, (GOT+16) */
> +#if ARCH_SIZE == 64
> + 0x11, 0x0A, 0x40, 0xf9, /* ldr x17, [x16, #PLT_GOT+0x10] */
> + 0x10, 0x42, 0x00, 0x91, /* add x16, x16,#PLT_GOT+0x10 */
> +#else
> + 0x11, 0x0A, 0x40, 0xb9, /* ldr w17, [x16, #PLT_GOT+0x8] */
> + 0x10, 0x22, 0x00, 0x11, /* add w16, w16,#PLT_GOT+0x8 */
> +#endif
> + 0x9f, 0x21, 0x03, 0xd5, /* autia1716 */
> + 0x20, 0x02, 0x1f, 0xd6, /* br x17 */
> + 0x1f, 0x20, 0x03, 0xd5, /* nop */
> + 0x1f, 0x20, 0x03, 0xd5, /* nop */
> + 0x1f, 0x20, 0x03, 0xd5, /* nop */
> +};
sorry i hadn't noticed this before,
PLT0 does not need a PAC variant because the
PLTGOT[2] entry that's loaded here is readonly
protected under relro (i think the linker
script magic for relro guarantees this).
in principle using autia here works too
(just additional unnecessary autia in the lazy
resolution code path), however this is ABI
between a dynamic linker and static linker:
with such PLT0 the PLTGOT[2] has to be filled
in with a signed pointer.
it seems our ELF ABI does not describe this
(PLT sequence should be in the SYS V ABI),
i think if we agree that relro always protects
PLTGOT[2] then we can still change this.
(to reduce the number of supported PLT0 entries)
next prev parent reply other threads:[~2019-04-11 14:47 UTC|newest]
Thread overview: 22+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-03-06 10:26 [PATCH, BFD, LD, AArch64, 0/4] Add support for AArch64 BTI and PAC in the linker Sudakshina Das
2019-03-06 10:31 ` [PATCH, BFD, LD, AArch64, 1/4] Add support for GNU PROPERTIES in AArch64 for BTI and PAC Sudakshina Das
2019-03-06 10:34 ` [PATCH, BFD, LD, AArch64, 2/4] Add --bti-nowarn to enable BTI without warning and to select BTI enabled PLTs Sudakshina Das
2019-03-06 10:36 ` [PATCH, BFD, LD, AArch64, 3/4] Add --bti to enable BTI and select BTI enabled PLTs but also warn for missing NOTE sections Sudakshina Das
2019-03-06 10:39 ` [PATCH, BFD, LD, AArch64, 4/4] Add --pac-plt to enable PLTs protected with PAC Sudakshina Das
2019-04-11 14:47 ` Szabolcs Nagy [this message]
2019-03-07 12:37 ` [PATCH, BFD, LD, AArch64, 0/4] Add support for AArch64 BTI and PAC in the linker Nick Clifton
2019-03-07 14:28 ` Sudakshina Das
2019-03-07 15:26 ` Peter Smith
2019-03-07 15:35 ` Nick Clifton
2019-03-07 15:49 ` Szabolcs Nagy
2019-03-07 15:33 ` Nick Clifton
2019-03-07 17:53 ` Sudakshina Das
2019-03-08 10:07 ` Nick Clifton
2019-03-08 11:08 ` Szabolcs Nagy
2019-03-08 11:14 ` Ramana Radhakrishnan
2019-03-08 11:46 ` Peter Smith
2019-03-08 12:32 ` Nick Clifton
2019-03-08 12:44 ` Ramana Radhakrishnan
2019-03-08 13:36 ` Sudakshina Das
2019-03-11 12:30 ` Nick Clifton
2019-03-13 11:49 ` Sudakshina Das
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=0fb1d193-01dd-483d-cdf2-c90398c73372@arm.com \
--to=szabolcs.nagy@arm.com \
--cc=Ramana.Radhakrishnan@arm.com \
--cc=Sudi.Das@arm.com \
--cc=binutils@sourceware.org \
--cc=nd@arm.com \
--cc=nickc@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).