Created static pic libc with no SSP to be used by rtld
ClosedPublic
Actions

Authored by lffpires_ruabrasil.org on May 3 2018, 9:14 PM.

Details

Reviewers

kib
bdrewery
brooks
emaste

Commits

rS333397: Created static libc PIC/no-SSP library to be used by rtld.

Summary

Created libc_nossp_pic.a to be used when linking rtld.

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

lffpires_ruabrasil.org created this revision.May 3 2018, 9:14 PM

Herald added subscribers: emaste, bdrewery. · View Herald TranscriptMay 3 2018, 9:14 PM

Harbormaster completed remote builds in B16414: Diff 42104.May 3 2018, 9:14 PM

lffpires_ruabrasil.org mentioned this in D15208: update __stack_chk_guard safely.May 3 2018, 9:18 PM

This looks fine to me, in particular the rtld changes. But I am not competent to review the build changes.

lib/libc/Makefile
204 ↗	(On Diff #42104)	I suggest to make this a separate change.

kib added reviewers: bdrewery, brooks, emaste.May 3 2018, 10:05 PM

kib removed subscribers: bdrewery, emaste.

bdrewery accepted this revision.May 3 2018, 10:39 PM

bdrewery added inline comments.

share/mk/bsd.lib.mk
312 ↗	(On Diff #42104)	I don't think we need the `MK_TOOLCHAIN` check here.

This revision is now accepted and ready to land.May 3 2018, 10:39 PM

This seems fine though I'm not super excited about compiling all of libc yet another time.

share/mk/bsd.lib.mk
312 ↗	(On Diff #42104)	It looks like it's just a copy of the case above.

In D15283#322252, @brooks wrote:

This seems fine though I'm not super excited about compiling all of libc yet another time.

Same. The benefit seems low so far if it is just removing a small hack from rtld. Perhaps a limited libc without all of the stuff rtld obviously doesn't need.

Also I suspect this is happening because lib/libc/secure/stack_protector.c was recently updated. We could easily use some ifdefs in that file and directly build it again from rtld with a different -DRTLD define to use a different implementation. Thus fixing having the logic in 2 separate files like before.

Is there something more coming where libc_nossp_pic will be useful?

In D15283#322290, @bdrewery wrote:

In D15283#322252, @brooks wrote:

This seems fine though I'm not super excited about compiling all of libc yet another time.

Same. The benefit seems low so far if it is just removing a small hack from rtld. Perhaps a limited libc without all of the stuff rtld obviously doesn't need.

Also I suspect this is happening because lib/libc/secure/stack_protector.c was recently updated. We could easily use some ifdefs in that file and directly build it again from rtld with a different -DRTLD define to use a different implementation. Thus fixing having the logic in 2 separate files like before.

Is there something more coming where libc_nossp_pic will be useful?

I diagree with the characterization of the issue as small or as a hack. Rtld is both very important and very different from the normal runtime environment so that its correctness must be maintained properly. I would rather argue that the removed code is the hack (which I am guilty of). I do think that libc_nossp_pic is worth it, at least because that it provides the fix which does not depend on the implementation details of the stack protector.

Also, I suggest to splut the change into two parts. One should be the modifications to the build infrastructure, and the other the rtld changes.

Separated libc restriction- and rtld-related changes
Removed unnecessary MK_TOOLCHAIN check

This revision now requires review to proceed.May 7 2018, 4:53 PM

Harbormaster completed remote builds in B16465: Diff 42237.May 7 2018, 4:53 PM

Made changes according to review comments.

If the reviewers feel that this is a good approach, this revision is now ready to be committed.

I'll post 2 separate revisions for the following 2 changes:
Removed -fstack-protector-all restriction from libc (introduced in rS180012).

Removed rtld-private implementations of stack_chk_guard,
stack_chk_fail() and __chk_fail() symbols (introduced in rS232861), since rtld
is now using libc_nossp_pic.a, which doesn't have SSP.

lffpires_ruabrasil.org edited the summary of this revision. (Show Details)May 7 2018, 5:00 PM