D15485.id42856.diff
No OneTemporary
Actions

Size

8 KB

Referenced Files

None

Subscribers

None

D15485.id42856.diff
View Options

	Index: sys/amd64/linux/linux_sysvec.c
	===================================================================
	--- sys/amd64/linux/linux_sysvec.c
	+++ sys/amd64/linux/linux_sysvec.c
	@@ -240,11 +240,11 @@
	linux_fixup_elf(register_t *stack_base, struct image_params imgp)
	{
	Elf_Auxargs *args;
	- Elf_Addr *base;
	- Elf_Addr *pos;
	+ Elf_Auxinfo argarray[LINUX_AT_COUNT], *pos;
	+ Elf_Addr auxbase, base;
	struct ps_strings *arginfo;
	struct proc *p;
	- int issetugid;
	+ int error, issetugid;

	p = imgp->proc;
	arginfo = (struct ps_strings *)p->p_sysent->sv_psstrings;
	@@ -253,7 +253,8 @@
	("unsafe linux_fixup_elf(), should be curproc"));
	base = (Elf64_Addr )stack_base;
	args = (Elf64_Auxargs *)imgp->auxargs;
	- pos = base + (imgp->args->argc + imgp->args->envc + 2);
	+ auxbase = base + imgp->args->argc + 1 + imgp->args->envc + 1;
	+ pos = &argarray[0];

	issetugid = p->p_flag & P_SUGID ? 1 : 0;
	AUXARGS_ENTRY(pos, LINUX_AT_SYSINFO_EHDR,
	@@ -282,8 +283,13 @@
	free(imgp->auxargs, M_TEMP);
	imgp->auxargs = NULL;

	+ error = copyout(&argarray[0], auxbase, sizeof(argarray));
	+ if (error != 0)
	+ return (error);
	+
	base--;
	- suword(base, (uint64_t)imgp->args->argc);
	+ if (suword(base, (uint64_t)imgp->args->argc) == -1)
	+ return (EFAULT);

	stack_base = (register_t )base;
	return (0);
	Index: sys/amd64/linux32/linux32_sysvec.c
	===================================================================
	--- sys/amd64/linux32/linux32_sysvec.c
	+++ sys/amd64/linux32/linux32_sysvec.c
	@@ -89,12 +89,6 @@

	MODULE_VERSION(linux, 1);

	-#define AUXARGS_ENTRY_32(pos, id, val) \
	- do { \
	- suword32(pos++, id); \
	- suword32(pos++, val); \
	- } while (0)
	-
	/*
	* Allow the sendsig functions to use the ldebug() facility even though they
	* are not syscalls themselves. Map them to syscall 0. This is slightly less
	@@ -202,10 +196,10 @@
	linux_fixup_elf(register_t *stack_base, struct image_params imgp)
	{
	Elf32_Auxargs *args;
	- Elf32_Addr *base;
	- Elf32_Addr *pos;
	+ Elf32_Auxinfo argarray[LINUX_AT_COUNT], *pos;
	+ Elf32_Addr auxbase, base;
	struct linux32_ps_strings *arginfo;
	- int issetugid;
	+ int error, issetugid;

	arginfo = (struct linux32_ps_strings *)LINUX32_PS_STRINGS;

	@@ -213,13 +207,14 @@
	("unsafe linux_fixup_elf(), should be curproc"));
	base = (Elf32_Addr )stack_base;
	args = (Elf32_Auxargs *)imgp->auxargs;
	- pos = base + (imgp->args->argc + imgp->args->envc + 2);
	+ auxbase = base + (imgp->args->argc + imgp->args->envc + 2);
	+ pos = &argarray[0];

	issetugid = imgp->proc->p_flag & P_SUGID ? 1 : 0;
	- AUXARGS_ENTRY_32(pos, LINUX_AT_SYSINFO_EHDR,
	+ AUXARGS_ENTRY(pos, LINUX_AT_SYSINFO_EHDR,
	imgp->proc->p_sysent->sv_shared_page_base);
	- AUXARGS_ENTRY_32(pos, LINUX_AT_SYSINFO, linux32_vsyscall);
	- AUXARGS_ENTRY_32(pos, LINUX_AT_HWCAP, cpu_feature);
	+ AUXARGS_ENTRY(pos, LINUX_AT_SYSINFO, linux32_vsyscall);
	+ AUXARGS_ENTRY(pos, LINUX_AT_HWCAP, cpu_feature);

	/*
	* Do not export AT_CLKTCK when emulating Linux kernel prior to 2.4.0,
	@@ -230,32 +225,37 @@
	* Also see linux_times() implementation.
	*/
	if (linux_kernver(curthread) >= LINUX_KERNVER_2004000)
	- AUXARGS_ENTRY_32(pos, LINUX_AT_CLKTCK, stclohz);
	- AUXARGS_ENTRY_32(pos, AT_PHDR, args->phdr);
	- AUXARGS_ENTRY_32(pos, AT_PHENT, args->phent);
	- AUXARGS_ENTRY_32(pos, AT_PHNUM, args->phnum);
	- AUXARGS_ENTRY_32(pos, AT_PAGESZ, args->pagesz);
	- AUXARGS_ENTRY_32(pos, AT_FLAGS, args->flags);
	- AUXARGS_ENTRY_32(pos, AT_ENTRY, args->entry);
	- AUXARGS_ENTRY_32(pos, AT_BASE, args->base);
	- AUXARGS_ENTRY_32(pos, LINUX_AT_SECURE, issetugid);
	- AUXARGS_ENTRY_32(pos, AT_UID, imgp->proc->p_ucred->cr_ruid);
	- AUXARGS_ENTRY_32(pos, AT_EUID, imgp->proc->p_ucred->cr_svuid);
	- AUXARGS_ENTRY_32(pos, AT_GID, imgp->proc->p_ucred->cr_rgid);
	- AUXARGS_ENTRY_32(pos, AT_EGID, imgp->proc->p_ucred->cr_svgid);
	- AUXARGS_ENTRY_32(pos, LINUX_AT_PLATFORM, PTROUT(linux_platform));
	+ AUXARGS_ENTRY(pos, LINUX_AT_CLKTCK, stclohz);
	+ AUXARGS_ENTRY(pos, AT_PHDR, args->phdr);
	+ AUXARGS_ENTRY(pos, AT_PHENT, args->phent);
	+ AUXARGS_ENTRY(pos, AT_PHNUM, args->phnum);
	+ AUXARGS_ENTRY(pos, AT_PAGESZ, args->pagesz);
	+ AUXARGS_ENTRY(pos, AT_FLAGS, args->flags);
	+ AUXARGS_ENTRY(pos, AT_ENTRY, args->entry);
	+ AUXARGS_ENTRY(pos, AT_BASE, args->base);
	+ AUXARGS_ENTRY(pos, LINUX_AT_SECURE, issetugid);
	+ AUXARGS_ENTRY(pos, AT_UID, imgp->proc->p_ucred->cr_ruid);
	+ AUXARGS_ENTRY(pos, AT_EUID, imgp->proc->p_ucred->cr_svuid);
	+ AUXARGS_ENTRY(pos, AT_GID, imgp->proc->p_ucred->cr_rgid);
	+ AUXARGS_ENTRY(pos, AT_EGID, imgp->proc->p_ucred->cr_svgid);
	+ AUXARGS_ENTRY(pos, LINUX_AT_PLATFORM, PTROUT(linux_platform));
	AUXARGS_ENTRY(pos, LINUX_AT_RANDOM, PTROUT(imgp->canary));
	if (imgp->execpathp != 0)
	AUXARGS_ENTRY(pos, LINUX_AT_EXECFN, PTROUT(imgp->execpathp));
	if (args->execfd != -1)
	- AUXARGS_ENTRY_32(pos, AT_EXECFD, args->execfd);
	- AUXARGS_ENTRY_32(pos, AT_NULL, 0);
	+ AUXARGS_ENTRY(pos, AT_EXECFD, args->execfd);
	+ AUXARGS_ENTRY(pos, AT_NULL, 0);

	free(imgp->auxargs, M_TEMP);
	imgp->auxargs = NULL;

	+ error = copyout(&argarray[0], auxbase, sizeof(argarray));
	+ if (error != 0)
	+ return (error);
	+
	base--;
	- suword32(base, (uint32_t)imgp->args->argc);
	+ if (suword32(base, (uint32_t)imgp->args->argc) == -1)
	+ return (EFAULT);
	stack_base = (register_t )base;
	return (0);
	}
	Index: sys/i386/linux/linux_sysvec.c
	===================================================================
	--- sys/i386/linux/linux_sysvec.c
	+++ sys/i386/linux/linux_sysvec.c
	@@ -207,10 +207,11 @@
	{
	struct proc *p;
	Elf32_Auxargs *args;
	- Elf32_Addr *uplatform;
	+ Elf32_Auxinfo argarray[LINUX_AT_COUNT], *pos;
	+ Elf32_Addr auxbase, uplatform;
	struct ps_strings *arginfo;
	register_t *pos;
	- int issetugid;
	+ int error, issetugid;

	KASSERT(curthread->td_proc == imgp->proc,
	("unsafe linux_fixup_elf(), should be curproc"));
	@@ -220,7 +221,8 @@
	arginfo = (struct ps_strings *)p->p_sysent->sv_psstrings;
	uplatform = (Elf32_Addr *)((caddr_t)arginfo - linux_szplatform);
	args = (Elf32_Auxargs *)imgp->auxargs;
	- pos = *stack_base + (imgp->args->argc + imgp->args->envc + 2);
	+ auxbase = *stack_base + imgp->args->argc + 1 + imgp->args->envc + 1;
	+ pos = &argarray[0];

	AUXARGS_ENTRY(pos, LINUX_AT_SYSINFO_EHDR,
	imgp->proc->p_sysent->sv_shared_page_base);
	@@ -260,8 +262,13 @@
	free(imgp->auxargs, M_TEMP);
	imgp->auxargs = NULL;

	+ error = copyout(&argarray[0], auxbase, sizeof(argarray));
	+ if (error != 0)
	+ return (error);
	+
	(*stack_base)--;
	- suword(*stack_base, (register_t)imgp->args->argc);
	+ if (suword(*stack_base, (register_t)imgp->args->argc) == -1)
	+ return (EFAULT);
	return (0);
	}

	Index: sys/kern/imgact_elf.c
	===================================================================
	--- sys/kern/imgact_elf.c
	+++ sys/kern/imgact_elf.c
	@@ -1098,11 +1098,13 @@
	__elfN(freebsd_fixup)(register_t *stack_base, struct image_params imgp)
	{
	Elf_Auxargs args = (Elf_Auxargs )imgp->auxargs;
	- Elf_Addr *base;
	- Elf_Addr *pos;
	+ Elf_Auxinfo argarray[AT_COUNT], *pos;
	+ Elf_Addr base, auxbase;
	+ int error;

	base = (Elf_Addr )stack_base;
	- pos = base + (imgp->args->argc + imgp->args->envc + 2);
	+ auxbase = base + imgp->args->argc + 1 + imgp->args->envc + 1;
	+ pos = &argarray[0];

	if (args->execfd != -1)
	AUXARGS_ENTRY(pos, AT_EXECFD, args->execfd);
	@@ -1143,8 +1145,13 @@
	free(imgp->auxargs, M_TEMP);
	imgp->auxargs = NULL;

	+ error = copyout(&argarray[0], auxbase, sizeof(argarray));
	+ if (error != 0)
	+ return (error);
	+
	base--;
	- suword(base, (long)imgp->args->argc);
	+ if (suword(base, imgp->args->argc) == -1)
	+ return (EFAULT);
	stack_base = (register_t )base;
	return (0);
	}
	Index: sys/kern/kern_exec.c
	===================================================================
	--- sys/kern/kern_exec.c
	+++ sys/kern/kern_exec.c
	@@ -691,9 +691,12 @@
	* Else stuff argument count as first item on stack
	*/
	if (p->p_sysent->sv_fixup != NULL)
	- (*p->p_sysent->sv_fixup)(&stack_base, imgp);
	+ error = (*p->p_sysent->sv_fixup)(&stack_base, imgp);
	else
	- suword(--stack_base, imgp->args->argc);
	+ error = suword(--stack_base, imgp->args->argc) == 0 ?
	+ 0 : EFAULT;
	+ if (error != 0)
	+ goto exec_fail_dealloc;

	if (args->fdp != NULL) {
	/* Install a brand new file descriptor table. */
	Index: sys/sys/imgact_elf.h
	===================================================================
	--- sys/sys/imgact_elf.h
	+++ sys/sys/imgact_elf.h
	@@ -37,7 +37,8 @@

	#ifdef _KERNEL

	-#define AUXARGS_ENTRY(pos, id, val) {suword(pos++, id); suword(pos++, val);}
	+#define AUXARGS_ENTRY(pos, id, val) \
	+ {(pos)->a_type = (id); (pos)->a_un.a_val = (val); (pos)++;}

	struct image_params;
	struct thread;

File Metadata

Mime Type: text/plain
Expires: Wed, Mar 25, 1:43 AM (13 h, 55 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 30288571
Default Alt Text: D15485.id42856.diff (8 KB)

D15485.id42856.diffNo OneTemporaryActions

D15485.id42856.diffView Options

File Metadata

Event Timeline

D15485.id42856.diff
No OneTemporary
Actions

D15485.id42856.diff
View Options