[PATCH 3/3] PR4886: Check build-id in module

public inbox for systemtap@sourceware.org
 help / color / mirror / Atom feed

* [PATCH 3/3] PR4886: Check build-id in module_init function if able.
@ 2008-09-28  2:26 Wenji Huang
  2008-09-28 13:38 ` Frank Ch. Eigler
  2008-10-01 21:41 ` Masami Hiramatsu
  0 siblings, 2 replies; 6+ messages in thread
From: Wenji Huang @ 2008-09-28  2:26 UTC (permalink / raw)
  To: SystemTAP

There are several cases to be considered, whether build-id exists in 
debuginfo file or not, whether module is loaded or not and whether 
build-id exists in loaded module/kernel or not.
---
  runtime/sym.c |   66 
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  translate.cxx |    1 +
  2 files changed, 67 insertions(+), 0 deletions(-)

diff --git a/runtime/sym.c b/runtime/sym.c
index 1a9e26b..38323c9 100644
--- a/runtime/sym.c
+++ b/runtime/sym.c
@@ -160,6 +160,72 @@ static const char *_stp_kallsyms_lookup(unsigned 
long addr, unsigned long *symbo
         return NULL;
  }

+/* Validate module/kernel based on build-id if there
+*  The completed case is the following combination:
+*         Debuginfo             Module                          Kernel
+*                         X                            X
+*      has build-id/not        unloaded                      has 
build-id/not
+*                              loaded && (has build-id/not)
+*
+*  NB: build-id exists only if ld>=2.18 and kernel>= 2.6.23
+*/
+static int _stp_module_check(void)
+{
+       struct _stp_module *m = NULL;
+       unsigned long notes_addr, base_addr;
+       unsigned i;
+
+       for (i = 0; i < _stp_num_modules; i++)
+       {
+               m = _stp_modules[i];
+
+               /* unloaded module */
+               if (m->notes_sect == 0) {
+                           _stp_warn("skip checking %s\n", m->name);
+                    continue;
+                }
+               if (m->build_id_len > 0) { /* build-id in debuginfo file */
+                   dbug_sym(1, "validate %s based on build-id\n", m->name);
+
+                   /* loaded module/kernel, but without build-id */
+                   if (m->notes_sect == 1) {
+                       _stp_error("missing build-id in %s\n", m->name);
+                       return 1;
+                   }
+                   /* notes end address */
+                   if (!strcmp(m->name, "kernel")) {
+                         notes_addr = m->build_id_offset;
+                         base_addr = _stp_module_relocate("kernel",
+                                                          "_stext", 0);
+                    } else {
+                         notes_addr = m->notes_sect + m->build_id_offset;
+                         base_addr = m->notes_sect;
+                   }
+                   /* notes start address */
+                   notes_addr -= m->build_id_len;
+                   if (notes_addr > base_addr) {
+                       if (memcmp(m->build_id_bits,
+                                   (unsigned char *) notes_addr,
+                                   m->build_id_len))
+                       {
+                          _stp_error("inconsistent build-id in %s with 
debuginfo\n", m->name);
+                          return 1;
+                       }
+                   } else { /* bug, shouldn't come here */
+                            _stp_error("unknown failure in checking %s\n",
+                                                               m->name);
+                            return 1;
+                          } /* end comparing */
+               } else {
+                         /* build-id in module/kernel, absent in 
debuginfo */
+                         if (m->notes_sect > 1) {
+                           _stp_error("unexpected build-id in %s\n", 
m->name);
+                           return 1;
+                         }
+                } /* end checking */
+       } /* end loop */
+       return 0;
+}

  /** Print an address symbolically.
   * @param address The address to lookup.
diff --git a/translate.cxx b/translate.cxx
index a9695f1..0ee5179 100644
--- a/translate.cxx
+++ b/translate.cxx
@@ -1113,6 +1113,7 @@ c_unparser::emit_module_init ()
    o->newline(-1) << "}";

    // XXX: perform buildid-based checking if able
+  o->newline() << "if (_stp_module_check()) rc = -EINVAL;";

    o->newline(-1) << "}";
    o->newline() << "if (rc) goto out;";
-- 
1.5.6

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [PATCH 3/3] PR4886: Check build-id in module_init function if able.
  2008-09-28  2:26 [PATCH 3/3] PR4886: Check build-id in module_init function if able Wenji Huang
@ 2008-09-28 13:38 ` Frank Ch. Eigler
  2008-09-30 16:29   ` Elena Zannoni
  2008-10-01 21:41 ` Masami Hiramatsu
  1 sibling, 1 reply; 6+ messages in thread
From: Frank Ch. Eigler @ 2008-09-28 13:38 UTC (permalink / raw)
  To: wenji.huang; +Cc: SystemTAP

Hi, Wenji -

Excellent work.  If it passes regression tests, please check it in.
It shouldn't be hard to apply it to userspace too, if it doesn't
already just work.

Some tweaks to the various messages may be helpful later, such as to
print parts of the buildid strings for eyeballing by the user, but
otherwise it looks just fine.

- FChE

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [PATCH 3/3] PR4886: Check build-id in module_init function if  able.
  2008-09-28 13:38 ` Frank Ch. Eigler
@ 2008-09-30 16:29   ` Elena Zannoni
  0 siblings, 0 replies; 6+ messages in thread
From: Elena Zannoni @ 2008-09-30 16:29 UTC (permalink / raw)
  To: Frank Ch. Eigler; +Cc: wenji.huang, SystemTAP

Thanks for the review, Frank.
Wenji is out this week, for the Chinese National holiday. He'll check it 
in when he gets back.

elena

Frank Ch. Eigler wrote:
> Hi, Wenji -
>
> Excellent work.  If it passes regression tests, please check it in.
> It shouldn't be hard to apply it to userspace too, if it doesn't
> already just work.
>
> Some tweaks to the various messages may be helpful later, such as to
> print parts of the buildid strings for eyeballing by the user, but
> otherwise it looks just fine.
>
> - FChE
>
>   


-- 
Elena Zannoni, Oracle
Senior Engineering Manager, Tools/Languages - Linux Engineering
Blog: http://blogs.oracle.com/ezannoni
Email: elena.zannoni@oracle.com

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [PATCH 3/3] PR4886: Check build-id in module_init function if  able.
  2008-09-28  2:26 [PATCH 3/3] PR4886: Check build-id in module_init function if able Wenji Huang
  2008-09-28 13:38 ` Frank Ch. Eigler
@ 2008-10-01 21:41 ` Masami Hiramatsu
  2008-10-01 21:44   ` Roland McGrath
  2008-10-01 21:45   ` Frank Ch. Eigler
  1 sibling, 2 replies; 6+ messages in thread
From: Masami Hiramatsu @ 2008-10-01 21:41 UTC (permalink / raw)
  To: wenji.huang; +Cc: SystemTAP

Hi Wenji,

I'm not sure when the build-id is updated, but interested in your
enhancement. :-)
If I'm using an out-of-tree driver, is build-id updated when I updated
the driver's source code but didn't change running kernel?
In other words, would each driver have its build-id which is different
from other drivers and kernel?

Thank you,

Wenji Huang wrote:
> There are several cases to be considered, whether build-id exists in 
> debuginfo file or not, whether module is loaded or not and whether 
> build-id exists in loaded module/kernel or not.
> ---
>   runtime/sym.c |   66 
> +++++++++++++++++++++++++++++++++++++++++++++++++++++++++
>   translate.cxx |    1 +
>   2 files changed, 67 insertions(+), 0 deletions(-)
> 
> diff --git a/runtime/sym.c b/runtime/sym.c
> index 1a9e26b..38323c9 100644
> --- a/runtime/sym.c
> +++ b/runtime/sym.c
> @@ -160,6 +160,72 @@ static const char *_stp_kallsyms_lookup(unsigned 
> long addr, unsigned long *symbo
>          return NULL;
>   }
> 
> +/* Validate module/kernel based on build-id if there
> +*  The completed case is the following combination:
> +*         Debuginfo             Module                          Kernel
> +*                         X                            X
> +*      has build-id/not        unloaded                      has 
> build-id/not
> +*                              loaded && (has build-id/not)
> +*
> +*  NB: build-id exists only if ld>=2.18 and kernel>= 2.6.23
> +*/
> +static int _stp_module_check(void)
> +{
> +       struct _stp_module *m = NULL;
> +       unsigned long notes_addr, base_addr;
> +       unsigned i;
> +
> +       for (i = 0; i < _stp_num_modules; i++)
> +       {
> +               m = _stp_modules[i];
> +
> +               /* unloaded module */
> +               if (m->notes_sect == 0) {
> +                           _stp_warn("skip checking %s\n", m->name);
> +                    continue;
> +                }
> +               if (m->build_id_len > 0) { /* build-id in debuginfo file */
> +                   dbug_sym(1, "validate %s based on build-id\n", m->name);
> +
> +                   /* loaded module/kernel, but without build-id */
> +                   if (m->notes_sect == 1) {
> +                       _stp_error("missing build-id in %s\n", m->name);
> +                       return 1;
> +                   }
> +                   /* notes end address */
> +                   if (!strcmp(m->name, "kernel")) {
> +                         notes_addr = m->build_id_offset;
> +                         base_addr = _stp_module_relocate("kernel",
> +                                                          "_stext", 0);
> +                    } else {
> +                         notes_addr = m->notes_sect + m->build_id_offset;
> +                         base_addr = m->notes_sect;
> +                   }
> +                   /* notes start address */
> +                   notes_addr -= m->build_id_len;
> +                   if (notes_addr > base_addr) {
> +                       if (memcmp(m->build_id_bits,
> +                                   (unsigned char *) notes_addr,
> +                                   m->build_id_len))
> +                       {
> +                          _stp_error("inconsistent build-id in %s with 
> debuginfo\n", m->name);
> +                          return 1;
> +                       }
> +                   } else { /* bug, shouldn't come here */
> +                            _stp_error("unknown failure in checking %s\n",
> +                                                               m->name);
> +                            return 1;
> +                          } /* end comparing */
> +               } else {
> +                         /* build-id in module/kernel, absent in 
> debuginfo */
> +                         if (m->notes_sect > 1) {
> +                           _stp_error("unexpected build-id in %s\n", 
> m->name);
> +                           return 1;
> +                         }
> +                } /* end checking */
> +       } /* end loop */
> +       return 0;
> +}
> 
>   /** Print an address symbolically.
>    * @param address The address to lookup.
> diff --git a/translate.cxx b/translate.cxx
> index a9695f1..0ee5179 100644
> --- a/translate.cxx
> +++ b/translate.cxx
> @@ -1113,6 +1113,7 @@ c_unparser::emit_module_init ()
>     o->newline(-1) << "}";
> 
>     // XXX: perform buildid-based checking if able
> +  o->newline() << "if (_stp_module_check()) rc = -EINVAL;";
> 
>     o->newline(-1) << "}";
>     o->newline() << "if (rc) goto out;";

-- 
Masami Hiramatsu

Software Engineer
Hitachi Computer Products (America) Inc.
Software Solutions Division

e-mail: mhiramat@redhat.com

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [PATCH 3/3] PR4886: Check build-id in module_init function if  able.
  2008-10-01 21:41 ` Masami Hiramatsu
@ 2008-10-01 21:44   ` Roland McGrath
  2008-10-01 21:45   ` Frank Ch. Eigler
  1 sibling, 0 replies; 6+ messages in thread
From: Roland McGrath @ 2008-10-01 21:44 UTC (permalink / raw)
  To: Masami Hiramatsu; +Cc: wenji.huang, SystemTAP

> I'm not sure when the build-id is updated, but interested in your
> enhancement. :-)
> If I'm using an out-of-tree driver, is build-id updated when I updated
> the driver's source code but didn't change running kernel?
> In other words, would each driver have its build-id which is different
> from other drivers and kernel?

Yes, every non-identical build of a .ko file should result in a distinct
build ID embedded in that .ko file.  Only if you rebuild the same code to
get the same binary should get you the same build ID.  (The build IDs of
the related kernel or of other .ko's have nothing to do with this.)


Thanks,
Roland

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [PATCH 3/3] PR4886: Check build-id in module_init function if  able.
  2008-10-01 21:41 ` Masami Hiramatsu
  2008-10-01 21:44   ` Roland McGrath
@ 2008-10-01 21:45   ` Frank Ch. Eigler
  1 sibling, 0 replies; 6+ messages in thread
From: Frank Ch. Eigler @ 2008-10-01 21:45 UTC (permalink / raw)
  To: Masami Hiramatsu; +Cc: wenji.huang, SystemTAP

Masami Hiramatsu <mhiramat@redhat.com> writes:

> [...]
> I'm not sure when the build-id is updated, but interested in your
> enhancement. :-)

The assembler/linker computes is based upon object file content.

> [...] In other words, would each driver have its build-id which is
> different from other drivers and kernel?

Yes.

- FChE

^ permalink raw reply	[flat|nested] 6+ messages in thread

end of thread, other threads:[~2008-10-01 21:45 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2008-09-28  2:26 [PATCH 3/3] PR4886: Check build-id in module_init function if able Wenji Huang
2008-09-28 13:38 ` Frank Ch. Eigler
2008-09-30 16:29   ` Elena Zannoni
2008-10-01 21:41 ` Masami Hiramatsu
2008-10-01 21:44   ` Roland McGrath
2008-10-01 21:45   ` Frank Ch. Eigler

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).