From patchwork Tue Jan 31 13:21:42 2017
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Ard Biesheuvel <ard.biesheuvel@linaro.org>
X-Patchwork-Id: 92983
Delivered-To: patch@linaro.org
Received: by 10.140.20.99 with SMTP id 90csp1923819qgi;
 Tue, 31 Jan 2017 05:27:48 -0800 (PST)
X-Received: by 10.98.103.20 with SMTP id b20mr29358882pfc.166.1485869268725; 
 Tue, 31 Jan 2017 05:27:48 -0800 (PST)
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
 by mx.google.com with ESMTP id
 x66si11218392pgb.260.2017.01.31.05.27.48; 
 Tue, 31 Jan 2017 05:27:48 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of
 linux-kernel-owner@vger.kernel.org designates 209.132.180.67
 as permitted sender) client-ip=209.132.180.67; 
Authentication-Results: mx.google.com; dkim=pass header.i=@linaro.org;
 spf=pass (google.com: best guess record for domain of
 linux-kernel-owner@vger.kernel.org designates 209.132.180.67
 as permitted sender)
 smtp.mailfrom=linux-kernel-owner@vger.kernel.org; 
 dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
 id S1752265AbdAaN1X (ORCPT <rfc822;julien.grall@linaro.org>
 + 25 others); Tue, 31 Jan 2017 08:27:23 -0500
Received: from mail-wj0-f173.google.com ([209.85.210.173]:35663 "EHLO
 mail-wj0-f173.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
 with ESMTP id S1752260AbdAaN0Y (ORCPT
 <rfc822;linux-kernel@vger.kernel.org>);
 Tue, 31 Jan 2017 08:26:24 -0500
Received: by mail-wj0-f173.google.com with SMTP id b20so13968323wjs.2
 for <linux-kernel@vger.kernel.org>;
 Tue, 31 Jan 2017 05:26:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; 
 h=from:to:cc:subject:date:message-id:in-reply-to:references;
 bh=i5uoS52NvcBJ4JPsUL9JUzpuKUetuLlL3vGwthUxHQY=;
 b=gZgTKylpyPmZ5Bg8u7ZffAynAcgX1YZ8Q6wGs++8bXPKI0fZ3YPpFXHzM08fpS2u0V
 AUHpTDOQUyGLLi2o3g5oQvkhb4YbnWC7yqD8nF/pEjlAEfzBwq8JDnUHpHDBBf5DXLwR
 +HOZApgNcfCszo1MdjFZoMrY9EVJ0Twzp8i54=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
 :references;
 bh=i5uoS52NvcBJ4JPsUL9JUzpuKUetuLlL3vGwthUxHQY=;
 b=UPbvkb8MaTIJtqqXMvIvYJ3G7+p3QKLh4YV0B02gIFOGn6Qunap8ZR/ame3NJz0Ikv
 qjBYtxqSnSPvaYFToEJvTD2RgPb3IWN+3Z5+PdR5CCz3T600Pb5Fwe/9YzIqmNIJ09aB
 7R/pASMyPW9aEyKzQ47TStVupgO+I/uM/6880sJB5Kh3cLxttt8EieOL1uvbGhpEyvyz
 QGpOEsq1YU/0A4Ctk9f9qtYgbvZTlrGfoJ2FAYyVMPYlqmNU7d3C9S6dFW3VJFX63+n9
 SG/c+nCbelrMci13TUc6jnZOkX3KgyflmB4HvoNH1JRI6IacmEQEFsYzq6ZIX6wZ6ZT3
 DqdQ==
X-Gm-Message-State: AIkVDXLxre2w/7ak47OCH4z9sqwQ8o4Woaz9z1qGzZ6NjOOz17RZuYLJCHmoEubl/mvORJa3
X-Received: by 10.223.175.49 with SMTP id z46mr28457672wrc.84.1485869172601; 
 Tue, 31 Jan 2017 05:26:12 -0800 (PST)
Received: from localhost.localdomain ([105.130.17.13])
 by smtp.gmail.com with ESMTPSA id
 i73sm23961714wmd.11.2017.01.31.05.26.10
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128);
 Tue, 31 Jan 2017 05:26:11 -0800 (PST)
From: Ard Biesheuvel <ard.biesheuvel@linaro.org>
To: linux-kernel@vger.kernel.org, Ingo Molnar <mingo@kernel.org>,
 Thomas Gleixner <tglx@linutronix.de>, "H . Peter Anvin" <hpa@zytor.com>
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>,
 linux-efi@vger.kernel.org, Matt Fleming <matt@codeblueprint.co.uk>
Subject: [PATCH 10/10] efi: libstub: Preserve .debug sections after absolute
 relocation check
Date: Tue, 31 Jan 2017 13:21:42 +0000
Message-Id: <1485868902-20401-11-git-send-email-ard.biesheuvel@linaro.org>
X-Mailer: git-send-email 2.7.4
In-Reply-To: <1485868902-20401-1-git-send-email-ard.biesheuvel@linaro.org>
References: <1485868902-20401-1-git-send-email-ard.biesheuvel@linaro.org>
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

The build commands for the ARM and arm64 EFI stubs strip the .debug
sections and other sections that may legally contain absolute relocations,
in order to inspect the remaining sections for the presence of such
relocations.

This leaves us without debugging symbols in the stub for no good reason,
considering that these sections are omitted from the kernel binary anyway,
and that these relocations are thus only consumed by users of the ELF
binary, such as debuggers.

So move to 'strip' for performing the relocation check, and if it succeeds,
invoke objcopy as before, but leaving the .debug sections in place. Note
that these sections may refer to ksymtab/kcrctab contents, so leave those
in place as well.

Cc: Matt Fleming <matt@codeblueprint.co.uk>
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
---
 drivers/firmware/efi/libstub/Makefile | 24 ++++++++++++++++--------
 1 file changed, 16 insertions(+), 8 deletions(-)

-- 
2.7.4

diff --git a/drivers/firmware/efi/libstub/Makefile b/drivers/firmware/efi/libstub/Makefile
index d564d25df8ab..33e0e2f1a730 100644
--- a/drivers/firmware/efi/libstub/Makefile
+++ b/drivers/firmware/efi/libstub/Makefile
@@ -11,7 +11,7 @@ cflags-$(CONFIG_X86)		+= -m$(BITS) -D__KERNEL__ -O2 \
 				   -mno-mmx -mno-sse
 
 cflags-$(CONFIG_ARM64)		:= $(subst -pg,,$(KBUILD_CFLAGS))
-cflags-$(CONFIG_ARM)		:= $(subst -pg,,$(KBUILD_CFLAGS)) -g0 \
+cflags-$(CONFIG_ARM)		:= $(subst -pg,,$(KBUILD_CFLAGS)) \
 				   -fno-builtin -fpic -mno-single-pic-base
 
 cflags-$(CONFIG_EFI_ARMSTUB)	+= -I$(srctree)/scripts/dtc/libfdt
@@ -60,7 +60,7 @@ CFLAGS_arm64-stub.o 		:= -DTEXT_OFFSET=$(TEXT_OFFSET)
 extra-$(CONFIG_EFI_ARMSTUB)	:= $(lib-y)
 lib-$(CONFIG_EFI_ARMSTUB)	:= $(patsubst %.o,%.stub.o,$(lib-y))
 
-STUBCOPY_FLAGS-y		:= -R .debug* -R *ksymtab* -R *kcrctab*
+STUBCOPY_RM-y			:= -R *ksymtab* -R *kcrctab*
 STUBCOPY_FLAGS-$(CONFIG_ARM64)	+= --prefix-alloc-sections=.init \
 				   --prefix-symbols=__efistub_
 STUBCOPY_RELOC-$(CONFIG_ARM64)	:= R_AARCH64_ABS
@@ -68,17 +68,25 @@ STUBCOPY_RELOC-$(CONFIG_ARM64)	:= R_AARCH64_ABS
 $(obj)/%.stub.o: $(obj)/%.o FORCE
 	$(call if_changed,stubcopy)
 
+#
+# Strip debug sections and some other sections that may legally contain
+# absolute relocations, so that we can inspect the remaining sections for
+# such relocations. If none are found, regenerate the output object, but
+# this time, use objcopy and leave all sections in place.
+#
 quiet_cmd_stubcopy = STUBCPY $@
-      cmd_stubcopy = if $(OBJCOPY) $(STUBCOPY_FLAGS-y) $< $@; then	\
-		     $(OBJDUMP) -r $@ | grep $(STUBCOPY_RELOC-y)	\
-		     && (echo >&2 "$@: absolute symbol references not allowed in the EFI stub"; \
-			 rm -f $@; /bin/false); else /bin/false; fi
+      cmd_stubcopy = if $(STRIP) --strip-debug $(STUBCOPY_RM-y) -o $@ $<; \
+		     then if $(OBJDUMP) -r $@ | grep $(STUBCOPY_RELOC-y); \
+		     then (echo >&2 "$@: absolute symbol references not allowed in the EFI stub"; \
+			   rm -f $@; /bin/false); 			  \
+		     else $(OBJCOPY) $(STUBCOPY_FLAGS-y) $< $@; fi	  \
+		     else /bin/false; fi
 
 #
 # ARM discards the .data section because it disallows r/w data in the
 # decompressor. So move our .data to .data.efistub, which is preserved
 # explicitly by the decompressor linker script.
 #
-STUBCOPY_FLAGS-$(CONFIG_ARM)	+= --rename-section .data=.data.efistub \
-				   -R ___ksymtab+sort -R ___kcrctab+sort
+STUBCOPY_FLAGS-$(CONFIG_ARM)	+= --rename-section .data=.data.efistub
+STUBCOPY_RM-$(CONFIG_ARM)	+= -R ___ksymtab+sort -R ___kcrctab+sort
 STUBCOPY_RELOC-$(CONFIG_ARM)	:= R_ARM_ABS