linuxkm/: refactor wc_reloc_table_segments.reloc_tab_* as wc_reloc_table_segments.text_reloc_tab.* (using the new struct wc_reloc_table_fenceposts and WC_RELOC_TABLE_FENCEPOSTS_INITIALIZER), and add wc_reloc_table_segments.rodata_reloc_tab (allocated but not yet implemented).

Author: douzzer

linuxkm/Makefile

@@ -163,7 +163,7 @@ GENERATE_RELOC_TAB := $(AWK) '								\
 	    print "\#include <wolfssl/wolfcrypt/libwolfssl_sources.h>";			\
 	    print "\#include <wolfssl/wolfcrypt/memory.h>";				\
 	    printf("%s\n    ",								\
-		"WOLFSSL_LOCAL const struct wc_reloc_table_ent wc_linuxkm_pie_reloc_tab[] = { ");	\
+		"WOLFSSL_LOCAL const struct wc_reloc_table_ent wc_linuxkm_pie_text_reloc_tab[] = { ");	\
 	    if ("SECTION_MAP" in ENVIRON) {						\
 		while (getline <ENVIRON["SECTION_MAP"] > 0)				\
 		    section_map[$$1] = $$2;						\
@@ -232,7 +232,7 @@ GENERATE_RELOC_TAB := $(AWK) '								\
 		exit(1);								\
 	    }										\
 	    print "    { .offset = ~0U, .dest_offset = ~0U, .dest_addend = 0, .dest_segment = WC_R_SEG_NONE, .reloc_type = WC_R_NONE } };"; \
-	    print "WOLFSSL_LOCAL const unsigned int wc_linuxkm_pie_reloc_tab_length = (unsigned int)(sizeof wc_linuxkm_pie_reloc_tab / sizeof wc_linuxkm_pie_reloc_tab[0]);"; \
+	    print "WOLFSSL_LOCAL const unsigned int wc_linuxkm_pie_text_reloc_tab_length = (unsigned int)(sizeof wc_linuxkm_pie_text_reloc_tab / sizeof wc_linuxkm_pie_text_reloc_tab[0]);"; \
 	}'
 
 ifeq "$(V)" "1"

linuxkm/linuxkm-fips-hash-wrapper.sh

@@ -48,15 +48,15 @@ fi
 # shellcheck disable=SC2016 # using $AWK instead of awk confuses shellcheck.
 readarray -t fenceposts < <(readelf --wide --sections --symbols "$mod_path" | "$AWK" '
 BEGIN {
-    fips_fenceposts["wc_linuxkm_pie_reloc_tab"] = "reloc_tab_start";
-    fips_fenceposts["wc_linuxkm_pie_reloc_tab_length"] = "reloc_tab_len_start";
+    fips_fenceposts["wc_linuxkm_pie_text_reloc_tab"] = "text_reloc_tab.start";
+    fips_fenceposts["wc_linuxkm_pie_text_reloc_tab_length"] = "text_reloc_tab.len_start";
     fips_fenceposts["verifyCore"] = "verifyCore_start";
     fips_fenceposts["wolfCrypt_FIPS_first"] = "fips_text_start";
     fips_fenceposts["wolfCrypt_FIPS_last"] = "fips_text_end";
     fips_fenceposts["wolfCrypt_FIPS_ro_start"] = "fips_rodata_start";
     fips_fenceposts["wolfCrypt_FIPS_ro_end"] = "fips_rodata_end";
-    singleton_ends["wc_linuxkm_pie_reloc_tab"] = "reloc_tab_end";
-    singleton_ends["wc_linuxkm_pie_reloc_tab_length"] = "reloc_tab_len_end";
+    singleton_ends["wc_linuxkm_pie_text_reloc_tab"] = "text_reloc_tab.end";
+    singleton_ends["wc_linuxkm_pie_text_reloc_tab_length"] = "text_reloc_tab.len_end";
     singleton_ends["verifyCore"] = "verifyCore_end";
 }
 

linuxkm/linuxkm-fips-hash.c

@@ -104,10 +104,10 @@ int main(int argc, char **argv)
                            .val = FENCEPOST_OPT_FLAG | offsetof(typeof(seg_map), x) }
         FENCEPOST_OPT(text_start),
         FENCEPOST_OPT(text_end),
-        FENCEPOST_OPT(reloc_tab_start),
-        FENCEPOST_OPT(reloc_tab_end),
-        FENCEPOST_OPT(reloc_tab_len_start),
-        FENCEPOST_OPT(reloc_tab_len_end),
+        FENCEPOST_OPT(text_reloc_tab.start),
+        FENCEPOST_OPT(text_reloc_tab.end),
+        FENCEPOST_OPT(text_reloc_tab.len_start),
+        FENCEPOST_OPT(text_reloc_tab.len_end),
         FENCEPOST_OPT(fips_text_start),
         FENCEPOST_OPT(fips_text_end),
         FENCEPOST_OPT(rodata_start),
@@ -228,10 +228,10 @@ int main(int argc, char **argv)
 
     if ((seg_map.text_start == ~0UL) ||
         (seg_map.text_end == ~0UL) ||
-        (seg_map.reloc_tab_start == ~0UL) ||
-        (seg_map.reloc_tab_end == ~0UL) ||
-        (seg_map.reloc_tab_len_start == ~0UL) ||
-        (seg_map.reloc_tab_len_end == ~0UL) ||
+        (seg_map.text_reloc_tab.start == ~0UL) ||
+        (seg_map.text_reloc_tab.end == ~0UL) ||
+        (seg_map.text_reloc_tab.len_start == ~0UL) ||
+        (seg_map.text_reloc_tab.len_end == ~0UL) ||
         (seg_map.fips_text_start == ~0UL) ||
         (seg_map.fips_text_end == ~0UL) ||
         (seg_map.rodata_start == ~0UL) ||
@@ -267,12 +267,12 @@ int main(int argc, char **argv)
         exit(1);
     }
 
-    if ((seg_map.reloc_tab_start >= seg_map.reloc_tab_end) ||
-        (seg_map.reloc_tab_end >= (unsigned long)st.st_size) ||
-        (seg_map.reloc_tab_len_start >= seg_map.reloc_tab_len_end) ||
-        (seg_map.reloc_tab_len_end >= (unsigned long)st.st_size))
+    if ((seg_map.text_reloc_tab.start >= seg_map.text_reloc_tab.end) ||
+        (seg_map.text_reloc_tab.end >= (unsigned long)st.st_size) ||
+        (seg_map.text_reloc_tab.len_start >= seg_map.text_reloc_tab.len_end) ||
+        (seg_map.text_reloc_tab.len_end >= (unsigned long)st.st_size))
     {
-        fprintf(stderr, "%s: supplied reloc_tab fencepost(s) are out of bounds "
+        fprintf(stderr, "%s: supplied text_reloc_tab fencepost(s) are out of bounds "
                 "for supplied module %s with length %lu.\n",
                 progname, mod_path, (unsigned long)st.st_size);
         exit(1);
@@ -291,10 +291,10 @@ int main(int argc, char **argv)
     seg_map.start = (unsigned long)mod_map;
     seg_map.end = (unsigned long)mod_map + st.st_size;
 
-    seg_map.reloc_tab_start += (unsigned long)mod_map;
-    seg_map.reloc_tab_end += (unsigned long)mod_map;
-    seg_map.reloc_tab_len_start += (unsigned long)mod_map;
-    seg_map.reloc_tab_len_end += (unsigned long)mod_map;
+    seg_map.text_reloc_tab.start += (unsigned long)mod_map;
+    seg_map.text_reloc_tab.end += (unsigned long)mod_map;
+    seg_map.text_reloc_tab.len_start += (unsigned long)mod_map;
+    seg_map.text_reloc_tab.len_end += (unsigned long)mod_map;
 
     seg_map.verifyCore_start += (unsigned long)mod_map;
     seg_map.verifyCore_end += (unsigned long)mod_map;

linuxkm/linuxkm_memory.c

@@ -140,8 +140,8 @@ ssize_t wc_reloc_normalize_text(
     size_t text_in_offset;
     const struct wc_reloc_table_ent *last_reloc; /* for error-checking order in reloc_tab[] */
     int n_text_r = 0, n_rodata_r = 0, n_rwdata_r = 0, n_bss_r = 0, n_other_r = 0, n_oob_r = 0;
-    const struct wc_reloc_table_ent *reloc_tab = (const struct wc_reloc_table_ent *)seg_map->reloc_tab_start;
-    const word32 reloc_tab_len = *(const word32 *)seg_map->reloc_tab_len_start;
+    const struct wc_reloc_table_ent *reloc_tab = (const struct wc_reloc_table_ent *)seg_map->text_reloc_tab.start;
+    const word32 reloc_tab_len = *(const word32 *)seg_map->text_reloc_tab.len_start;
 
     if ((text_in_len == 0) ||
         ((uintptr_t)text_in < seg_map->text_start) ||
@@ -553,16 +553,16 @@ int wc_fips_generate_hash(
 
 #if defined(WC_SYM_RELOC_TABLES) || defined(WC_SYM_RELOC_TABLES_SUPPORT)
     if (seg_map->text_is_live) {
-        if ((seg_map->reloc_tab_start == 0) ||
-            (seg_map->reloc_tab_len_start == 0))
+        if ((seg_map->text_reloc_tab.start == 0) ||
+            (seg_map->text_reloc_tab.len_start == 0))
         {
             RELOC_DEBUG_PRINTF("assert failed.\n");
             return BAD_FUNC_ARG;
         }
     }
     else {
-        if ((seg_map->reloc_tab_end == 0) ||
-            (seg_map->reloc_tab_len_end == 0))
+        if ((seg_map->text_reloc_tab.end == 0) ||
+            (seg_map->text_reloc_tab.len_end == 0))
         {
             RELOC_DEBUG_PRINTF("assert failed.\n");
             return BAD_FUNC_ARG;
@@ -575,8 +575,8 @@ int wc_fips_generate_hash(
         (seg_map->fips_rodata_start >= seg_map->fips_rodata_end)
 #if defined(WC_SYM_RELOC_TABLES) || defined(WC_SYM_RELOC_TABLES_SUPPORT)
         ||
-        ((seg_map->reloc_tab_end != 0) && (seg_map->reloc_tab_start >= seg_map->reloc_tab_end)) ||
-        ((seg_map->reloc_tab_len_end != 0) && (seg_map->reloc_tab_len_start >= seg_map->reloc_tab_len_end)) ||
+        ((seg_map->text_reloc_tab.end != 0) && (seg_map->text_reloc_tab.start >= seg_map->text_reloc_tab.end)) ||
+        ((seg_map->text_reloc_tab.len_end != 0) && (seg_map->text_reloc_tab.len_start >= seg_map->text_reloc_tab.len_end)) ||
         (seg_map->text_start >= seg_map->text_end) ||
         (seg_map->rodata_start >= seg_map->rodata_end) ||
         (seg_map->data_start >= seg_map->data_end) ||
@@ -594,8 +594,8 @@ int wc_fips_generate_hash(
             (seg_map->verifyCore_start < seg_map->start)
 #if defined(WC_SYM_RELOC_TABLES) || defined(WC_SYM_RELOC_TABLES_SUPPORT)
             ||
-            (seg_map->reloc_tab_start < seg_map->start) ||
-            (seg_map->reloc_tab_len_start < seg_map->start) ||
+            (seg_map->text_reloc_tab.start < seg_map->start) ||
+            (seg_map->text_reloc_tab.len_start < seg_map->start) ||
             (seg_map->text_start < seg_map->start) ||
             (seg_map->rodata_start < seg_map->start) ||
             (seg_map->data_start < seg_map->start) ||
@@ -614,10 +614,10 @@ int wc_fips_generate_hash(
             (seg_map->verifyCore_end > seg_map->end)
 #if defined(WC_SYM_RELOC_TABLES) || defined(WC_SYM_RELOC_TABLES_SUPPORT)
             ||
-            ((seg_map->reloc_tab_end != 0) &&
-             (seg_map->reloc_tab_end > seg_map->end)) ||
-            ((seg_map->reloc_tab_len_end != 0) &&
-             (seg_map->reloc_tab_len_end > seg_map->end)) ||
+            ((seg_map->text_reloc_tab.end != 0) &&
+             (seg_map->text_reloc_tab.end > seg_map->end)) ||
+            ((seg_map->text_reloc_tab.len_end != 0) &&
+             (seg_map->text_reloc_tab.len_end > seg_map->end)) ||
             (seg_map->text_end > seg_map->end) ||
             (seg_map->rodata_end > seg_map->end) ||
             (seg_map->data_end > seg_map->end) ||
@@ -631,15 +631,15 @@ int wc_fips_generate_hash(
     }
 
 #if defined(WC_SYM_RELOC_TABLES) || defined(WC_SYM_RELOC_TABLES_SUPPORT)
-    if ((seg_map->reloc_tab_len_end != 0) &&
-        (seg_map->reloc_tab_len_end - seg_map->reloc_tab_len_start != sizeof(word32)))
+    if ((seg_map->text_reloc_tab.len_end != 0) &&
+        (seg_map->text_reloc_tab.len_end - seg_map->text_reloc_tab.len_start != sizeof(word32)))
     {
         RELOC_DEBUG_PRINTF("assert failed.\n");
         return BAD_FUNC_ARG;
     }
-    else if (seg_map->reloc_tab_len_start & (sizeof(word32) - 1)) {
-        /* fprintf(stderr, "%s: seg_map->reloc_tab_len_start isn't properly aligned: 0x%llx.\n", progname, (
-           unsigned long long)seg_map->reloc_tab_len_start); */
+    else if (seg_map->text_reloc_tab.len_start & (sizeof(word32) - 1)) {
+        /* fprintf(stderr, "%s: seg_map->text_reloc_tab.len_start isn't properly aligned: 0x%llx.\n", progname, (
+           unsigned long long)seg_map->text_reloc_tab.len_start); */
         RELOC_DEBUG_PRINTF("assert failed.\n");
         return BAD_ALIGN_E;
     }
@@ -649,8 +649,8 @@ int wc_fips_generate_hash(
          * a nonsense byte-swapped value, or the final reloc_tab ent has
          * nonsense flags.
          */
-        word32 reloc_tab_len = *(const word32 *)seg_map->reloc_tab_len_start;
-        const struct wc_reloc_table_ent *reloc_tab = (const struct wc_reloc_table_ent *)seg_map->reloc_tab_start;
+        word32 reloc_tab_len = *(const word32 *)seg_map->text_reloc_tab.len_start;
+        const struct wc_reloc_table_ent *reloc_tab = (const struct wc_reloc_table_ent *)seg_map->text_reloc_tab.start;
         if (reloc_tab_len == 0) {
             RELOC_DEBUG_PRINTF("assert failed.\n");
             return BAD_FUNC_ARG;
@@ -667,14 +667,14 @@ int wc_fips_generate_hash(
             RELOC_DEBUG_PRINTF("assert failed.\n");
             return BAD_FUNC_ARG;
         }
-        else if ((seg_map->reloc_tab_end != 0) &&
-            (seg_map->reloc_tab_end - seg_map->reloc_tab_start != sizeof(struct wc_reloc_table_ent) * *(const word32 *)seg_map->reloc_tab_len_start))
+        else if ((seg_map->text_reloc_tab.end != 0) &&
+            (seg_map->text_reloc_tab.end - seg_map->text_reloc_tab.start != sizeof(struct wc_reloc_table_ent) * *(const word32 *)seg_map->text_reloc_tab.len_start))
         {
             /*
-              fprintf(stderr, "%s: wc_linuxkm_pie_reloc_tab_length from module (%u) is inconsistent with actual reloc_tab size %llu.\n",
+              fprintf(stderr, "%s: wc_linuxkm_pie_text_reloc_tab_length from module (%u) is inconsistent with actual text_reloc_tab size %llu.\n",
               progname,
-              *(const word32 *)seg_map->reloc_tab_len_start,
-              (unsigned long long)(seg_map->reloc_tab_end - seg_map->reloc_tab_start));
+              *(const word32 *)seg_map->text_reloc_tab.len_start,
+              (unsigned long long)(seg_map->text_reloc_tab.end - seg_map->text_reloc_tab.start));
             */
             RELOC_DEBUG_PRINTF("assert failed.\n");
             return BAD_FUNC_ARG;

linuxkm/linuxkm_memory.h

@@ -80,13 +80,25 @@ struct __attribute__((packed)) wc_reloc_table_ent {
 
 /* full ELF fencepost representation, to allow wc_reloc_normalize_text() */
 
+struct wc_reloc_table_fenceposts {
+    unsigned long start;
+    unsigned long end;
+    unsigned long len_start;
+    unsigned long len_end;
+};
+
+#define WC_RELOC_TABLE_FENCEPOSTS_INITIALIZER { \
+    .start = ~0UL,                              \
+    .end = ~0UL,                                \
+    .len_start = ~0UL,                          \
+    .len_end = ~0UL                             \
+}
+
 struct wc_reloc_table_segments {
     unsigned long start;
     unsigned long end;
-    unsigned long reloc_tab_start;
-    unsigned long reloc_tab_end;
-    unsigned long reloc_tab_len_start;
-    unsigned long reloc_tab_len_end;
+    struct wc_reloc_table_fenceposts text_reloc_tab;
+    struct wc_reloc_table_fenceposts rodata_reloc_tab;
     unsigned long text_start;
     unsigned long text_end;
 #ifdef HAVE_FIPS
@@ -113,10 +125,8 @@ struct wc_reloc_table_segments {
 #define WC_RELOC_TABLE_SEGMENTS_INITIALIZER { \
     .start = ~0UL,                            \
     .end = ~0UL,                              \
-    .reloc_tab_start = ~0UL,                  \
-    .reloc_tab_end = ~0UL,                    \
-    .reloc_tab_len_start = ~0UL,              \
-    .reloc_tab_len_end = ~0UL,                \
+    .text_reloc_tab = WC_RELOC_TABLE_FENCEPOSTS_INITIALIZER,   \
+    .rodata_reloc_tab = WC_RELOC_TABLE_FENCEPOSTS_INITIALIZER, \
     .text_start = ~0UL,                       \
     .text_end = ~0UL,                         \
     .fips_text_start = ~0UL,                  \
@@ -139,10 +149,8 @@ struct wc_reloc_table_segments {
 #define WC_RELOC_TABLE_SEGMENTS_INITIALIZER { \
     .start = ~0UL,                            \
     .end = ~0UL,                              \
-    .reloc_tab_start = ~0UL,                  \
-    .reloc_tab_end = ~0UL,                    \
-    .reloc_tab_len_start = ~0UL,              \
-    .reloc_tab_len_end = ~0UL,                \
+    .text_reloc_tab = WC_RELOC_TABLE_FENCEPOSTS_INITIALIZER,   \
+    .rodata_reloc_tab = WC_RELOC_TABLE_FENCEPOSTS_INITIALIZER, \
     .text_start = ~0UL,                       \
     .text_end = ~0UL,                         \
     .rodata_start = ~0UL,                     \
@@ -200,8 +208,12 @@ struct wc_reloc_counts {
 
 #if defined(WC_SYM_RELOC_TABLES) || defined(WC_SYM_RELOC_TABLES_SUPPORT)
 
+#ifndef WOLFSSL_SEGMENT_CANONICALIZER_BUFSIZ
+    #define WOLFSSL_SEGMENT_CANONICALIZER_BUFSIZ 8192
+#endif
+
 #ifndef WOLFSSL_TEXT_SEGMENT_CANONICALIZER_BUFSIZ
-    #define WOLFSSL_TEXT_SEGMENT_CANONICALIZER_BUFSIZ 8192
+    #define WOLFSSL_TEXT_SEGMENT_CANONICALIZER_BUFSIZ WOLFSSL_SEGMENT_CANONICALIZER_BUFSIZ
 #endif
 
 WOLFSSL_API ssize_t wc_reloc_normalize_text(
@@ -212,6 +224,14 @@ WOLFSSL_API ssize_t wc_reloc_normalize_text(
     const struct wc_reloc_table_segments *seg_map,
     struct wc_reloc_counts *reloc_counts);
 
+WOLFSSL_API ssize_t wc_reloc_normalize_rodata(
+    const byte *rodata_in,
+    size_t rodata_in_len,
+    byte *rodata_out,
+    ssize_t *cur_index_p,
+    const struct wc_reloc_table_segments *seg_map,
+    struct wc_reloc_counts *reloc_counts);
+
 #endif /* WC_SYM_RELOC_TABLES || WC_SYM_RELOC_TABLES_SUPPORT */
 
 #ifdef HAVE_FIPS

linuxkm/module_hooks.c

@@ -621,7 +621,7 @@ static int wolfssl_init(void)
 #ifdef HAVE_FIPS
     /* The compiled-in verifycore must be the right length, else the module
      * geometry will change when the correct value is passed in, destabilizing
-     * wc_linuxkm_pie_reloc_tab.  It also must be the right length for the
+     * wc_linuxkm_pie_text_reloc_tab.  It also must be the right length for the
      * module-update-fips-hash recipe (in-place overwrite) to work, and for
      * updateFipsHash() (WOLFCRYPT_FIPS_CORE_DYNAMIC_HASH_VALUE) to be safe from
      * overruns.
@@ -1118,17 +1118,17 @@ MODULE_VERSION(LIBWOLFSSL_VERSION_STRING);
 
 #ifdef WC_SYM_RELOC_TABLES
 
-extern const struct wc_reloc_table_ent wc_linuxkm_pie_reloc_tab[];
-extern const unsigned int wc_linuxkm_pie_reloc_tab_length;
+extern const struct wc_reloc_table_ent wc_linuxkm_pie_text_reloc_tab[];
+extern const unsigned int wc_linuxkm_pie_text_reloc_tab_length;
 
 static const struct wc_reloc_table_segments seg_map = {
     .start = 0, .end = 0,
     .text_start = (size_t)(uintptr_t)__wc_text_start,
     .text_end = (size_t)(uintptr_t)__wc_text_end,
-    .reloc_tab_start = (size_t)(uintptr_t)wc_linuxkm_pie_reloc_tab,
-    .reloc_tab_end = 0,
-    .reloc_tab_len_start = (size_t)(uintptr_t)&wc_linuxkm_pie_reloc_tab_length,
-    .reloc_tab_len_end = 0,
+    .text_reloc_tab.start = (size_t)(uintptr_t)wc_linuxkm_pie_text_reloc_tab,
+    .text_reloc_tab.end = 0,
+    .text_reloc_tab.len_start = (size_t)(uintptr_t)&wc_linuxkm_pie_text_reloc_tab_length,
+    .text_reloc_tab.len_end = 0,
 #ifdef HAVE_FIPS
 #ifdef WC_USE_PIE_FENCEPOSTS_FOR_FIPS
     .fips_text_start = (size_t)(uintptr_t)__wc_text_start,