2002-10-04 22:45:05 +00:00
#!/bin/sh -ef
2002-09-09 12:35:53 +00:00
#
# verify-elf - verify ELF objects.
#
2017-01-14 13:21:50 +00:00
# Copyright (C) 2002-2017 Dmitry V. Levin <ldv@altlinux.org>
2009-12-19 03:00:08 +03:00
# Copyright (C) 2009 Alexey Tourbin <at@altlinux.org>
2016-11-15 20:11:38 +03:00
# Copyright (C) 2016 Ivan Zakharyaschev <imz@altlinux.org>
2002-09-09 12:35:53 +00:00
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
#
2016-11-30 16:22:27 +03:00
set -o pipefail
2003-11-09 16:47:45 +00:00
. @RPMCONFIGDIR@/functions
ValidateBuildRoot
2002-09-09 12:35:53 +00:00
2006-01-14 20:44:54 +00:00
elf_ldd='@RPMCONFIGDIR@/ldd'
2006-03-07 16:16:17 +00:00
lookup_path()
{
local d dir path found=
dir="$1" && shift
path="$1" && shift
for d in $(printf %s "$path" |tr : ' '); do
[ "$d" = "$dir" ] || continue
found="$d"
break
done
[ -n "$found" ] && return 0 || return 1
}
2002-09-09 12:35:53 +00:00
rc=0
2009-12-18 21:10:30 +03:00
2011-12-10 17:50:11 +00:00
get_verify_policy()
{
local name value
name="VERIFY_ELF_$1" && shift
eval "value=\"\$$name\""
[ -n "$value" ] || value=normal
printf %s "$value"
}
2013-01-10 22:59:47 +00:00
for m in ARCH FHS LFS LINT RPATH STACK TEXTREL UNRESOLVED; do
2011-12-10 17:50:11 +00:00
[ "${VERIFY_ELF_ANY-}" != strict ] || break
case "$(get_verify_policy "$m")" in
strict) VERIFY_ELF_ANY=strict ;;
normal|'') VERIFY_ELF_ANY=normal ;;
relaxed) [ "${VERIFY_ELF_ANY-}" = normal ] || VERIFY_ELF_ANY=relaxed ;;
*) [ -n "${VERIFY_ELF_ANY-}" ] || VERIFY_ELF_ANY=no ;;
esac
done
error_strict()
{
local method filename prefix
method="$1"; shift
filename="$1"; shift
case "$(get_verify_policy "$method")" in
strict) prefix=ERROR; rc=1 ;;
*) prefix=WARNING ;;
esac
Info "$prefix: $filename: $*"
}
error_normal()
{
local method filename prefix
method="$1"; shift
filename="$1"; shift
case "$(get_verify_policy "$method")" in
strict|normal) prefix=ERROR; rc=1 ;;
*) prefix=WARNING ;;
esac
Info "$prefix: $filename: $*"
}
error_relaxed()
{
local method filename prefix
method="$1"; shift
filename="$1"; shift
case "$(get_verify_policy "$method")" in
strict|normal|relaxed) prefix=ERROR; rc=1 ;;
*) prefix=WARNING ;;
esac
Info "$prefix: $filename: $*"
}
2011-12-12 16:27:52 +00:00
verify_rpath()
2009-12-18 21:10:30 +03:00
{
2011-12-12 16:27:52 +00:00
local f rpath
2011-12-10 17:50:11 +00:00
f="$1"; shift
2011-12-12 16:27:52 +00:00
rpath="$1"; shift
2011-12-10 17:50:11 +00:00
2011-12-12 16:27:52 +00:00
[ -n "$rpath" ] || return 0
2009-12-18 21:10:30 +03:00
2011-12-12 16:27:52 +00:00
local found=
if [ -z "${rpath##:*}" ]; then
error_relaxed RPATH "$f" "RPATH starts with \":\": $rpath"
found=1
elif [ -z "${rpath%%*:}" ]; then
error_relaxed RPATH "$f" "RPATH ends with \":\": $rpath"
found=1
elif [ -z "${rpath##*::*}" ]; then
error_relaxed RPATH "$f" "RPATH contains \"::\": $rpath"
found=1
elif [ -z "${rpath##*:*}" ]; then
error_strict RPATH "$f" "RPATH contains several entries: $rpath"
found=1
2002-09-09 12:35:53 +00:00
fi
2011-12-12 16:27:52 +00:00
if [ $(printf "%s" "$rpath" | LC_ALL=C tr -d '[ -~]' | wc -c) != 0 ]; then
error_relaxed RPATH "$f" "RPATH contains a non-ascii entry: $rpath"
found=1
else
for p in $(printf "%s" "$rpath" | tr : ' '); do
if [ -z "${p#\$ORIGIN}" -o -z "${p##\$ORIGIN/*}" -o \
-z "${p#/lib}" -o -z "${p##/lib/*}" -o \
-z "${p#/lib64}" -o -z "${p##/lib64/*}" -o \
-z "${p#/usr/lib}" -o -z "${p##/usr/lib/*}" -o \
-z "${p#/usr/lib64}" -o -z "${p##/usr/lib64/*}" ]; then
continue
fi
if [ -z "${p##/*}" ]; then
error_normal RPATH "$f" "RPATH contains illegal absolute entry \"$p\": $rpath"
else
error_relaxed RPATH "$f" "RPATH contains illegal relative entry \"$p\": $rpath"
fi
found=1
done
2009-12-19 01:05:53 +03:00
fi
2016-12-08 19:08:04 +03:00
local found_p
2011-12-12 16:27:52 +00:00
for p in $RPM_BUILD_ROOT $RPM_BUILD_DIR $RPM_SOURCE_DIR /lib/../lib64; do
2016-12-08 19:08:04 +03:00
found_p="$(printf %s "$rpath" | { grep -F "$p" || [ "$?" -eq 1 ]; } )"
if [ -n "$found_p" ]; then
2011-12-12 16:27:52 +00:00
error_relaxed RPATH "$f" "RPATH contains illegal entry \"$p\": $rpath"
2011-12-10 17:50:11 +00:00
found=1
fi
2011-12-12 16:27:52 +00:00
done
2002-09-09 12:35:53 +00:00
2011-12-12 16:27:52 +00:00
for p in /lib /lib64 /usr/lib /usr/lib64; do
2016-12-08 19:08:04 +03:00
found_p="$(printf %s " $rpath " | tr : ' ' | { grep -F " $p " || [ "$?" -eq 1 ]; } )"
if [ -n "$found_p" ]; then
2011-12-12 16:27:52 +00:00
error_normal RPATH "$f" "RPATH contains standard library path \"$p\": $rpath"
2011-12-10 21:51:42 +00:00
found=1
fi
2011-12-12 16:27:52 +00:00
done
2011-12-10 21:51:42 +00:00
2011-12-12 16:27:52 +00:00
[ -n "$found" ] ||
error_strict RPATH "$f" "RPATH entry found: $rpath"
}
2011-12-10 21:51:42 +00:00
2011-12-12 16:27:52 +00:00
verify_unresolved()
{
2016-03-28 21:41:52 +03:00
local f preload fname rpath ldd_info ldd_rc
2011-12-12 16:27:52 +00:00
f="$1"; shift
2016-03-28 21:41:52 +03:00
preload="$1"; shift
2011-12-12 16:27:52 +00:00
fname="$1"; shift
rpath="$1"; shift
2011-12-10 17:50:11 +00:00
2011-12-12 16:27:52 +00:00
if [ -n "$rpath" ]; then
rpath="$rpath $RPM_VERIFY_ELF_LDD_RPATH"
else
rpath="$RPM_VERIFY_ELF_LDD_RPATH"
2006-04-04 16:42:49 +00:00
fi
2011-12-12 16:27:52 +00:00
rpath="$(printf %s "$rpath" |
tr -s '[:space:]' '\n' |
2016-12-07 15:20:14 +03:00
{ grep -v '^$' || [ "$?" -eq 1 ]; } |
2011-12-12 16:27:52 +00:00
LANG=C uniq |
sed -e "s|^|$RPM_BUILD_ROOT&|" |
tr -s '[:space:]' : |
sed -e 's/^:\+//; s/:\+$//')"
2002-09-09 12:35:53 +00:00
2017-01-14 13:21:50 +00:00
if ! ldd_info="$(RPM_LD_PRELOAD="$preload" "$elf_ldd" --undefined -- "$f" "$rpath" 2>&1)"; then
2011-12-12 16:27:52 +00:00
printf >&2 '%s\n' "$ldd_info"
error_relaxed UNRESOLVED "$f" 'ldd failed'
return
2006-01-14 20:44:54 +00:00
fi
2011-12-12 16:27:52 +00:00
case "$VERIFY_ELF_UNRESOLVED" in
no|relaxed)
ldd_rc=0
;;
strict)
ldd_rc=1
;;
*)
if [ -z "${t##*ELF* executable*dynamically linked*}" ] ||
2016-12-06 17:15:17 +00:00
lookup_path "${fname%/*}" "$RPM_VERIFY_ELF_LDD_RPATH" ||
@RPMCONFIGDIR@/is_elf_so_executable "$f"; then
2011-12-10 17:50:11 +00:00
ldd_rc=1
2011-12-12 16:27:52 +00:00
else
ldd_rc=0
fi
;;
esac
printf '%s\n' "$ldd_info" |
awk -vrc="$ldd_rc" -vprog="$PROG" -vfname="$f" -- '
2006-01-14 20:44:54 +00:00
BEGIN {
if (rc == "0")
prefix="WARNING"
else
prefix="ERROR"
errors=0
}
$2 == "=>" && $3 == "not" && $4 == "found" {
lib=$1
printf ("%s: %s: %s: not found: %s\n", prog, prefix, fname, lib)
errors=1
}
$1 == "undefined" && $2 == "symbol:" {
sym=$3
lib=$4
sub("^[(]", "", lib)
sub("[)]$", "", lib)
if (lib == fname) {
printf ("%s: %s: %s: undefined symbol: %s\n", prog, prefix, fname, sym)
errors=1
}
}
END {
if (rc != "0" && errors != 0)
exit 1
}
2011-12-12 16:27:52 +00:00
' >&2 && ldd_rc=0 || ldd_rc=1
[ "$ldd_rc" = 0 ] || rc=1
}
2015-01-23 03:10:05 +00:00
read_elf_segments()
{
local f
f="$1"; shift
[ -n "$elf_segments" ] ||
elf_segments="$(readelf --wide --segments -- "$f")" ||
error_relaxed ANY "$f" 'readelf failed'
}
2011-12-12 16:27:52 +00:00
verify_stack()
{
2015-01-23 03:10:05 +00:00
local f
2011-12-12 16:27:52 +00:00
f="$1"; shift
2015-01-23 03:10:05 +00:00
read_elf_segments "$f"
[ -n "$elf_segments" ] || return 0
local sp0 nsp0 sp1 hex stack exe_reg exe_stack
sp0='[[:space:]]*'
nsp0='[^[:space:]]*'
sp1='[[:space:]]\+'
hex='0x[0-9a-f]\+'
2016-12-07 15:29:16 +03:00
stack="$(printf '%s\n' "$elf_segments" | { grep "^${sp0}GNU_STACK${sp1}" || [ "$?" -eq 1 ]; } )"
[ -n "$stack" ] || {
2011-12-12 16:27:52 +00:00
error_strict STACK "$f" 'STACK entry not found'
2015-01-23 03:10:05 +00:00
return
}
exe_reg="${sp0}GNU_STACK${sp1}${hex}${sp1}${hex}${sp1}${hex}${sp1}${hex}${sp1}${hex}${sp1}${nsp0}E${nsp0}${sp1}${hex}"
2016-12-07 15:29:16 +03:00
exe_stack="$(printf '%s\n' "$stack" | { grep -x "$exe_reg" || [ "$?" -eq 1 ]; } )"
[ -z "$exe_stack" ] ||
2015-01-23 03:10:05 +00:00
error_strict STACK "$f" "found executable STACK entry: $exe_stack"
2011-12-12 16:27:52 +00:00
}
2013-01-10 22:59:47 +00:00
LFS_CFLAGS="$(getconf LFS_CFLAGS)"
non_lfs_funcs='@RPMCONFIGDIR@/verify-elf-non-lfs-funcs.list'
verify_lfs()
{
[ -n "$LFS_CFLAGS" -a -s "$non_lfs_funcs" ] || return 0
2016-12-19 20:10:40 +03:00
local f funcs
2013-01-10 22:59:47 +00:00
f="$1"; shift
2016-12-19 20:10:40 +03:00
readelf --wide --dynamic "$f" |
grep -q '^[[:space:]]*[x0-9a-f]\+[[:space:]]\+(NEEDED)[[:space:]]\+Shared library:[[:space:]]\+\[lib[cz]\.so\..*\]' ||
return 0
2013-01-10 22:59:47 +00:00
funcs="$(readelf --wide --symbols "$f" |
sed -n 's/^[[:space:]]*[0-9]\+:[[:space:]]\+[0-9a-f]\+[[:space:]]\+[0-9]\+[[:space:]]\+FUNC[[:space:]]\+[^[:space:]]\+[[:space:]]\+DEFAULT[[:space:]]\+UND[[:space:]]\+\([^@[:space:]]\+\)@.*/\1/p' |
sort -u |
comm -12 - "$non_lfs_funcs" |
tr '\n' ' ')"
funcs="${funcs%% }"
[ -z "$funcs" ] ||
error_normal LFS "$f" "uses non-LFS functions: $funcs"
}
2011-12-12 16:27:52 +00:00
run_eu()
{
local prog="$1"; shift
# Internally, eu-* use $ORIGIN to dlopen their backends.
# Pass LD_ORIGIN_PATH to make them work without /proc.
LD_ORIGIN_PATH=/usr/bin eu-$prog "$@"
}
VerifyELF()
{
2016-11-30 16:13:52 +03:00
local f preload t objdump_info fname lint_info textrel
2011-12-12 16:27:52 +00:00
f="$1"; shift
2016-03-28 21:41:52 +03:00
preload="$1"; shift
2015-01-23 03:10:05 +00:00
elf_segments=
2011-12-12 16:27:52 +00:00
if [ ! -f "$f" ]; then
error_strict ANY "$f" 'file not available'
return
fi
if ! t=$(file -b "$f"); then
error_relaxed ANY "$f" 'file type not available'
return
fi
if ! objdump_info=$(objdump -p "$f"); then
error_normal ANY "$f" 'objdump failed'
return
fi
fname="${f#$RPM_BUILD_ROOT}"
fname="${fname#.}"
if [ "$RPM_TARGET_ARCH" = noarch ]; then
error_normal ARCH "$f" "ELF object for \"$RPM_TARGET_ARCH\" architecture"
fi
if [ -z "${fname##/usr/share/*}" -o -z "${fname##/etc/*}" ]; then
error_normal FHS "$f" 'ELF object out of allowed directory tree'
fi
if ! lint_info=$(run_eu elflint --gnu-ld "$f" 2>&1); then
printf '%s\n' "$lint_info" >&2
error_normal LINT "$f" 'eu-elflint failed'
fi
2016-11-30 16:22:27 +03:00
local rpath rpaths
rpaths="$(printf %s "$objdump_info" |awk '($1=="RPATH"||$1=="RUNPATH"){print $2}')"
2016-11-30 16:08:37 +03:00
while read -r rpath; do
verify_rpath "$f" "$rpath"
# Two RUNPATH/RPATHs are reported; verify_rpath() always prints at least:
# error_strict RPATH "$f" "RPATH entry found: $rpath"
2016-11-30 16:22:27 +03:00
done <<<"$rpaths"
2011-12-12 16:27:52 +00:00
if [ -z "${t##*ELF* executable*}" -o -z "${t##*ELF* shared object*}" ]; then
2015-01-23 03:10:05 +00:00
verify_stack "$f"
2011-12-12 16:27:52 +00:00
fi
textrel="$(printf %s "$objdump_info" |sed -ne 's/^[[:space:]]*TEXTREL[[:space:]]\+\([^[:space:]]\+\).*/\1/p')"
if [ -n "$textrel" ]; then
run_eu findtextrel "$f" 2>&1 |uniq >&2
error_normal TEXTREL "$f" "TEXTREL entry found: $textrel"
fi
if [ -z "${t##*ELF* executable*dynamically linked*}" -o -z "${t##*ELF* shared object*}" ]; then
2016-11-30 16:17:12 +03:00
rpath="$(printf %s "$objdump_info" |awk '($1=="RUNPATH"){print $2}' |tr -s : ' ' |sed -e "s|\$ORIGIN|${fname%/*}|g")"
2016-11-29 13:32:18 +03:00
if [ -z "$rpath" ]; then
2016-11-30 16:17:12 +03:00
rpath="$(printf %s "$objdump_info" |awk '($1=="RPATH"){print $2}' |tr -s : ' ' |sed -e "s|\$ORIGIN|${fname%/*}|g")"
2016-11-29 13:32:18 +03:00
fi
verify_unresolved "$f" "$preload" "$fname" "$rpath"
2013-01-10 22:59:47 +00:00
if [ -z "${t##*ELF 32-bit*}" ]; then
verify_lfs "$f"
fi
2011-12-12 16:27:52 +00:00
fi
2009-12-18 21:10:30 +03:00
}
if [ $# -gt 0 ]; then
for f; do
2016-03-28 21:41:52 +03:00
VerifyELF "$f" ''
2009-12-18 21:10:30 +03:00
done
else
2016-03-28 21:41:52 +03:00
while IFS=$'\t' read -r f preload; do
VerifyELF "$f" "$preload"
2009-12-18 21:10:30 +03:00
done
fi
2002-09-09 12:35:53 +00:00
exit $rc