From 681ddc91e1f9cb33cf3b1370bd36ab9296f9be38 Mon Sep 17 00:00:00 2001 From: Szabolcs Nagy Date: Fri, 2 Sep 2022 14:07:06 +0100 Subject: cheri: elf: Use RW permissions for l_ld when needed The dynamic section of an executable needs to be written to set the DT_DEBUG entry for debuggers (unless the target has some other place to store r_debug). For this reason we make l_ld writable whenever the dynamic section is writable. The ld.so l_ld is kept RX, since it does not have DT_DEBUG. (Note: relocating the dynamic section is not allowed on cheri and that's the only other reason glibc would write to it.) --- elf/dl-load.c | 4 +++- elf/rtld.c | 4 +++- 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/elf/dl-load.c b/elf/dl-load.c index 7d74214626..b25ddaec05 100644 --- a/elf/dl-load.c +++ b/elf/dl-load.c @@ -1276,7 +1276,9 @@ _dl_map_object_from_fd (const char *name, const char *origname, int fd, } if (l->l_ld != 0) - l->l_ld = (ElfW(Dyn) *) ((ElfW(Addr)) l->l_ld + l->l_addr); + l->l_ld = (ElfW(Dyn) *) (l->l_ld_readonly + ? dl_rx_ptr (l, (elfptr_t) l->l_ld) + : dl_rw_ptr (l, (elfptr_t) l->l_ld)); elf_get_dynamic_info (l, false, false); diff --git a/elf/rtld.c b/elf/rtld.c index 1dac96c94b..41ffb297e5 100644 --- a/elf/rtld.c +++ b/elf/rtld.c @@ -1175,8 +1175,10 @@ rtld_setup_main_map (struct link_map *main_map) case PT_DYNAMIC: /* This tells us where to find the dynamic section, which tells us everything we need to do. */ - main_map->l_ld = (void *) main_map->l_addr + ph->p_vaddr; main_map->l_ld_readonly = (ph->p_flags & PF_W) == 0; + main_map->l_ld = (void *) (main_map->l_ld_readonly + ? dl_rx_ptr (main_map, ph->p_vaddr) + : dl_rw_ptr (main_map, ph->p_vaddr)); break; case PT_INTERP: /* This "interpreter segment" was used by the program loader to -- cgit 1.4.1