Home Explore Help
Sign In
miti
/
graphene
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 328ca4af9b
Branches Tags
graphene
/
Pal
/
src
/
security
/
Linux
/
main.c

main.c 17 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614 
  1. /* -*- mode:c; c-file-style:"k&r"; c-basic-offset: 4; tab-width:4; indent-tabs-mode:nil; mode:auto-fill; fill-column:78; -*- */
    2. 

  2. /* vim: set ts=4 sw=4 et tw=78 fo=cqt wm=0: */
    3. 

  3. 

  4. #define _GNU_SOURCE 1
    5. 

  5. #ifndef __GNUC__
    6. 

  6. #define __GNUC__ 1
    7. 

  7. #endif
    8. 

  8. 

  9. #include <linux/unistd.h>
    10. 

  10. #include <asm/mman.h>
    11. 

  11. #include <stdint.h>
    12. 

  12. #include <stddef.h>
    13. 

  13. #include <fcntl.h>
    14. 

  14. 

  15. #include <elf/elf.h>
    16. 

  16. #include <sysdeps/generic/ldsodefs.h>
    17. 

  17. #include <asm-errno.h>
    18. 

  18. #include <sys/socket.h>
    19. 

  19. #include <netinet/in.h>
    20. 

  20. 

  21. #include "pal_security.h"
    22. 

  22. #include "utils.h"
    23. 

  23. 

  24. struct pal_sec_info * pal_sec_info_addr = NULL;
    25. 

  25. 

  26. unsigned long pagesize  = 4096;
    27. 

  27. unsigned long pageshift = 4095;
    28. 

  28. unsigned long pagemask  = ~4095;
    29. 

  29. 

  30. #if __WORDSIZE == 2
    31. 

  31. # define FILEBUF_SIZE 512
    32. 

  32. #else
    33. 

  33. # define FILEBUF_SIZE 832
    34. 

  34. #endif
    35. 

  35. 

  36. char libname[PATH_MAX];
    37. 

  37. const char * execname;
    38. 

  38. 

  39. int find_manifest (int * pargc, const char *** pargv)
    40. 

  40. {
    41. 

  41.     int argc = *pargc;
    42. 

  42.     const char ** argv = *pargv, * name = *argv;
    43. 

  43. 

  44.     if (!argc)
    45. 

  45.         return -EINVAL;
    46. 

  46. 

  47.     int fd = INLINE_SYSCALL(open, 2, name, O_RDONLY|O_CLOEXEC);
    48. 

  48. 

  49.     if (IS_ERR(fd))
    50. 

  50.         return -ERRNO(fd);
    51. 

  51. 

  52.     char filebuf[4];
    53. 

  53.     INLINE_SYSCALL(read, 3, fd, filebuf, 2);
    54. 

  54. 

  55.     /* check if the first argument is a manifest, in case it is
    56. 

  56.        a runnable script. */
    57. 

  57.     if (!memcmp(filebuf, "#!", 2)) {
    58. 

  58.         char * path = __alloca(80);
    59. 

  59.         if (!path)
    60. 

  60.             return -ENOMEM;
    61. 

  61. 

  62.         int bytes = INLINE_SYSCALL(read, 3, fd, path, 80);
    63. 

  63. 

  64.         for (int i = 0 ; i < bytes ; i++)
    65. 

  65.             if (path[i] == ' ' || path[i] == '\n') {
    66. 

  66.                 path[i] = 0;
    67. 

  67.                 bytes = i;
    68. 

  68.                 break;
    69. 

  69.             }
    70. 

  70. 

  71.         memcpy(libname, path, bytes + 1);
    72. 

  72.         goto opened;
    73. 

  73.     }
    74. 

  74. 

  75.     INLINE_SYSCALL(close, 1, fd);
    76. 

  76. 

  77.     memcpy(libname, name, strlen(name) + 1);
    78. 

  78.     argc--;
    79. 

  79.     argv++;
    80. 

  80.     name = *argv;
    81. 

  81. 

  82.     if (!argc)
    83. 

  83.         return -EINVAL;
    84. 

  84. 

  85.     fd = INLINE_SYSCALL(open, 2, name, O_RDONLY|O_CLOEXEC);
    86. 

  86. 

  87.     if (IS_ERR(fd))
    88. 

  88.         return -ERRNO(fd);
    89. 

  89. 

  90.     /* check if the first argument is a executable. If it is, try finding
    91. 

  91.        all the possible manifest files */
    92. 

  92.     INLINE_SYSCALL(read, 3, fd, filebuf, 4);
    93. 

  93. 

  94.     if (!memcmp(filebuf, "\177ELF", 4)) {
    95. 

  95.         int len = strlen(name);
    96. 

  96.         char * execpath = malloc(len + 1);
    97. 

  97.         fast_strcpy(execpath, name, len);
    98. 

  98.         execname = execpath;
    99. 

  99.         char * filename = __alloca(len + 10);
    100. 

  100.         fast_strcpy(filename, name, len);
    101. 

  101.         fast_strcpy(filename + len, ".manifest", 9);
    102. 

  102. 

  103.         fd = INLINE_SYSCALL(open, 2, filename, O_RDONLY|O_CLOEXEC);
    104. 

  104.         if (!IS_ERR(fd))
    105. 

  105.             goto opened;
    106. 

  106. 

  107.         fd = INLINE_SYSCALL(open, 2, "manifest", O_RDONLY|O_CLOEXEC);
    108. 

  108.         if (!IS_ERR(fd))
    109. 

  109.             goto opened;
    110. 

  110. 

  111.         return -ENOENT;
    112. 

  112.     }
    113. 

  113. 

  114. opened:
    115. 

  115.     *pargc = argc;
    116. 

  116.     *pargv = argv;
    117. 

  117. 

  118.     return fd;
    119. 

  119. }
    120. 

  120. 

  121. int load_manifest (int fd, struct config_store * config)
    122. 

  122. {
    123. 

  123.     int nbytes = INLINE_SYSCALL(lseek, 3, fd, 0, SEEK_END);
    124. 

  124. 

  125.     if (IS_ERR(nbytes))
    126. 

  126.         return -ERRNO(nbytes);
    127. 

  127. 

  128.     void * config_raw = (void *)
    129. 

  129.             INLINE_SYSCALL(mmap, 6, NULL, nbytes,
    130. 

  130.                            PROT_READ|PROT_WRITE, MAP_PRIVATE,
    131. 

  131.                            fd, 0);
    132. 

  132. 

  133.     if (IS_ERR_P(config_raw))
    134. 

  134.         return -ERRNO_P(config_raw);
    135. 

  135. 

  136.     config->raw_data = config_raw;
    137. 

  137.     config->raw_size = nbytes;
    138. 

  138.     config->malloc   = malloc;
    139. 

  139.     config->free     = NULL;
    140. 

  140. 

  141.     const char * errstring = NULL;
    142. 

  142.     int ret = read_config(config, NULL, &errstring);
    143. 

  143. 

  144.     if (ret < 0) {
    145. 

  145.         printf("can't read manifest: %s\n", errstring);
    146. 

  146.         return ret;
    147. 

  147.     }
    148. 

  148. 

  149.     return 0;
    150. 

  150. }
    151. 

  151. 

  152. static int do_relocate (ElfW(Dyn) * dyn, ElfW(Addr) addr)
    153. 

  153. {
    154. 

  154.     ElfW(Dyn) * dt_rela      = NULL;
    155. 

  155.     ElfW(Dyn) * dt_relacount = NULL;
    156. 

  156. 

  157.     for ( ; dyn->d_tag != DT_NULL ; dyn++)
    158. 

  158.         switch (dyn->d_tag) {
    159. 

  159.             case DT_RELA:       dt_rela = dyn;      break;
    160. 

  160.             case DT_RELACOUNT:  dt_relacount = dyn; break;
    161. 

  161.         }
    162. 

  162. 

  163.     if (!dt_rela || !dt_relacount)
    164. 

  164.         return -EINVAL;
    165. 

  165. 

  166.     ElfW(Rela) * r = (void *) (addr + dt_rela->d_un.d_ptr);
    167. 

  167.     ElfW(Rela) * end = r + dt_relacount->d_un.d_val;
    168. 

  168. 

  169.     for ( ; r < end ; r++)
    170. 

  170.         *(ElfW(Addr) *) (addr + r->r_offset) = addr + r->r_addend;
    171. 

  171. 

  172.      return 0;
    173. 

  173. }
    174. 

  174. 

  175. static void get_pal_sec_info (const ElfW(Dyn) * dyn, ElfW(Addr) addr)
    176. 

  176. {
    177. 

  177.     const ElfW(Dyn) * dt_symtab    = NULL;
    178. 

  178.     const ElfW(Dyn) * dt_strtab    = NULL;
    179. 

  179.     const ElfW(Dyn) * dt_rela      = NULL;
    180. 

  180.     const ElfW(Dyn) * dt_relasz    = NULL;
    181. 

  181.     const ElfW(Dyn) * dt_relacount = NULL;
    182. 

  182. 

  183.     for ( ; dyn->d_tag != DT_NULL ; dyn++)
    184. 

  184.         switch (dyn->d_tag) {
    185. 

  185.             case DT_SYMTAB:     dt_symtab = dyn;    break;
    186. 

  186.             case DT_STRTAB:     dt_strtab = dyn;    break;
    187. 

  187.             case DT_RELA:       dt_rela = dyn;      break;
    188. 

  188.             case DT_RELASZ:     dt_relasz = dyn;    break;
    189. 

  189.             case DT_RELACOUNT:  dt_relacount = dyn; break;
    190. 

  190.         }
    191. 

  191. 

  192.     if (!dt_symtab || !dt_strtab || !dt_rela || !dt_relasz || !dt_relacount)
    193. 

  193.         return;
    194. 

  194. 

  195.     ElfW(Sym) * symtab = (void *) (addr + dt_symtab->d_un.d_ptr);
    196. 

  196.     const char * strtab = (void *) (addr + dt_strtab->d_un.d_ptr);
    197. 

  197.     ElfW(Rela) * r = (void *) (addr + dt_rela->d_un.d_ptr);
    198. 

  198.     ElfW(Rela) * rel = r + dt_relacount->d_un.d_val;
    199. 

  199.     ElfW(Rela) * end = r + dt_relasz->d_un.d_val / sizeof(ElfW(Rela));
    200. 

  200. 

  201.     for (r = rel ; r < end ; r++) {
    202. 

  202.         ElfW(Sym) * sym = &symtab[ELFW(R_SYM) (r->r_info)];
    203. 

  203.         if (!sym->st_name)
    204. 

  204.             continue;
    205. 

  205.         const char * name = strtab + sym->st_name;
    206. 

  206.         if (!memcmp(name, "pal_sec_info", 13))
    207. 

  207.             pal_sec_info_addr = (void *) addr + sym->st_value;
    208. 

  208.     }
    209. 

  209. }
    210. 

  210. 

  211. static int load_static (const char * filename,
    212. 

  212.                         unsigned long * entry, unsigned long * load_addr,
    213. 

  213.                         unsigned long * text_start, unsigned long * text_end,
    214. 

  214.                         unsigned long * phoff, int * phnum)
    215. 

  215. {
    216. 

  216.     int ret = 0;
    217. 

  217. 

  218.     int fd = INLINE_SYSCALL(open, 2, filename, O_RDONLY|O_CLOEXEC);
    219. 

  219.     if (IS_ERR(fd))
    220. 

  220.         return -ERRNO(fd);
    221. 

  221. 

  222.     char filebuf[FILEBUF_SIZE];
    223. 

  223.     ret = INLINE_SYSCALL(read, 3, fd, filebuf, FILEBUF_SIZE);
    224. 

  224.     if (INTERNAL_SYSCALL_ERROR(ret))
    225. 

  225.         goto out;
    226. 

  226. 

  227.     const ElfW(Ehdr) * header = (void *) filebuf;
    228. 

  228.     const ElfW(Phdr) * phdr = (void *) filebuf + header->e_phoff;
    229. 

  229.     const ElfW(Phdr) * ph;
    230. 

  230.     const ElfW(Dyn) * dyn = NULL;
    231. 

  231.     ElfW(Addr) base = 0;
    232. 

  232. 

  233.     *text_start = (unsigned long) -1;
    234. 

  234.     *text_end = 0;
    235. 

  235.     *phoff = header->e_phoff;
    236. 

  236.     *phnum = header->e_phnum;
    237. 

  237. 

  238.     struct loadcmd {
    239. 

  239.         ElfW(Addr) mapstart, mapend, dataend, allocend;
    240. 

  240.         off_t mapoff;
    241. 

  241.         int prot;
    242. 

  242.     } loadcmds[16], *c;
    243. 

  243.     int nloadcmds = 0;
    244. 

  244. 

  245.     for (ph = phdr ; ph < &phdr[header->e_phnum] ; ph++)
    246. 

  246.         switch (ph->p_type) {
    247. 

  247.             case PT_DYNAMIC:
    248. 

  248.                 dyn = (void *) ph->p_vaddr;
    249. 

  249.                 break;
    250. 

  250. 

  251.             case PT_LOAD:
    252. 

  252.                 if (nloadcmds == 16) {
    253. 

  253.                     ret = -EINVAL;
    254. 

  254.                     goto out;
    255. 

  255.                 }
    256. 

  256. 

  257.                 c = &loadcmds[nloadcmds++];
    258. 

  258.                 c->mapstart = ph->p_vaddr & pagemask;
    259. 

  259.                 c->mapend = (ph->p_vaddr + ph->p_filesz + pageshift) & pagemask;
    260. 

  260.                 c->dataend = ph->p_vaddr + ph->p_filesz;
    261. 

  261.                 c->allocend = ph->p_vaddr + ph->p_memsz;
    262. 

  262.                 c->mapoff = ph->p_offset & pagemask;
    263. 

  263.                 c->prot = (ph->p_flags & PF_R ? PROT_READ  : 0) |
    264. 

  264.                           (ph->p_flags & PF_W ? PROT_WRITE : 0) |
    265. 

  265.                           (ph->p_flags & PF_X ? PROT_EXEC  : 0);
    266. 

  266.                 break;
    267. 

  267.         }
    268. 

  268. 

  269.     c = loadcmds;
    270. 

  270.     int maplength = loadcmds[nloadcmds - 1].allocend - c->mapstart;
    271. 

  271. 

  272.     ElfW(Addr) addr = INLINE_SYSCALL(mmap, 6, NULL, maplength, c->prot,
    273. 

  273.                                      MAP_PRIVATE | MAP_FILE, fd, c->mapoff);
    274. 

  274. 

  275.     *load_addr = base = addr;
    276. 

  276.     dyn = (void *) (base + (ElfW(Addr)) dyn);
    277. 

  277.     goto postmap;
    278. 

  278. 

  279.     for ( ; c < &loadcmds[nloadcmds] ; c++) {
    280. 

  280.         addr = INLINE_SYSCALL(mmap, 6, base + c->mapstart,
    281. 

  281.                               c->mapend - c->mapstart, c->prot,
    282. 

  282.                               MAP_PRIVATE | MAP_FILE | MAP_FIXED,
    283. 

  283.                               fd, c->mapoff);
    284. 

  284. 

  285. postmap:
    286. 

  286.         if (IS_ERR_P(addr)) {
    287. 

  287.             ret = -ERRNO_P(addr);
    288. 

  288.             goto out;
    289. 

  289.         }
    290. 

  290. 

  291.         if (c == loadcmds)
    292. 

  292.             INLINE_SYSCALL(munmap, 2, base + c->mapend,
    293. 

  293.                            maplength - c->mapend);
    294. 

  294. 

  295.         if (c->prot & PROT_EXEC) {
    296. 

  296.             if (base + c->mapstart < *text_start)
    297. 

  297.                 *text_start = base + c->mapstart;
    298. 

  298.             if (base + c->mapend > *text_end)
    299. 

  299.                 *text_end = base + c->mapend;
    300. 

  300.         }
    301. 

  301. 

  302.         if (c->allocend > c->dataend) {
    303. 

  303.             ElfW(Addr) zero, zeroend, zeropage;
    304. 

  304. 

  305.             zero = base + c->dataend;
    306. 

  306.             zeroend = (base + c->allocend + pageshift) & pagemask;
    307. 

  307.             zeropage = (zero + pageshift) & pagemask;
    308. 

  308. 

  309.             if (zeroend < zeropage)
    310. 

  310.                 zeropage = zeroend;
    311. 

  311. 

  312.             if (zeropage > zero)
    313. 

  313.                 memset((void *) zero, 0, zeropage - zero);
    314. 

  314. 

  315.             if (zeroend > zeropage) {
    316. 

  316.                 addr = INLINE_SYSCALL(mmap, 6,
    317. 

  317.                                       zeropage, zeroend - zeropage, c->prot,
    318. 

  318.                                       MAP_PRIVATE | MAP_ANON | MAP_FIXED,
    319. 

  319.                                       -1, 0);
    320. 

  320.                 if (IS_ERR_P(addr)) {
    321. 

  321.                     ret = -ERRNO_P(addr);
    322. 

  322.                     goto out;
    323. 

  323.                 }
    324. 

  324.             }
    325. 

  325.         }
    326. 

  326.     }
    327. 

  327. 

  328.     get_pal_sec_info(dyn, base);
    329. 

  329. 

  330.     *entry = base + header->e_entry;
    331. 

  331. 

  332. out:
    333. 

  333.     INLINE_SYSCALL(close, 1, fd);
    334. 

  334.     return ret;
    335. 

  335. }
    336. 

  336. 

  337. void __attribute__((noinline)) ___dl_debug_state (void) {}
    338. 

  338. 

  339. extern __typeof(___dl_debug_state) _dl_debug_state
    340. 

  340.     __attribute ((alias ("___dl_debug_state")));
    341. 

  341. 

  342. struct link_map {
    343. 

  343.     ElfW(Addr)        l_addr;
    344. 

  344.     const char *      l_name;
    345. 

  345.     const ElfW(Dyn) * l_ld;
    346. 

  346.     struct link_map * l_next, * l_prev;
    347. 

  347. };
    348. 

  348. 

  349. static struct link_map init_link_map;
    350. 

  350. 

  351. struct r_debug {
    352. 

  352.     int r_version;
    353. 

  353.     struct link_map * r_map;
    354. 

  354.     ElfW(Addr) r_brk;
    355. 

  355.     enum {
    356. 

  356.         RT_CONSISTENT,
    357. 

  357.         RT_ADD,
    358. 

  358.         RT_DELETE
    359. 

  359.     } r_state;
    360. 

  360.     ElfW(Addr) r_ldbase;
    361. 

  361. };
    362. 

  362. 

  363. struct r_debug ___r_debug =
    364. 

  364.     { 1, NULL, (ElfW(Addr)) &___dl_debug_state, RT_CONSISTENT, 0 };
    365. 

  365. 

  366. extern __typeof(___r_debug) _r_debug
    367. 

  367.     __attribute ((alias ("___r_debug")));
    368. 

  368. 

  369. static void run_library (unsigned long entry, void * stack,
    370. 

  370.                          int argc, const char ** argv)
    371. 

  371. {
    372. 

  372.     *((void **) (stack -= sizeof(void *))) = NULL;
    373. 

  373.     for (int i = argc - 1 ; i >= 0 ; i--)
    374. 

  374.         *((const void **) (stack -= sizeof(void *))) = argv[i];
    375. 

  375.     *((const void **) (stack -= sizeof(void *))) = libname;
    376. 

  376.     *((unsigned long *) (stack -= sizeof(unsigned long))) = argc + 1;
    377. 

  377. 

  378.     asm volatile ("movq %0, %%rsp\r\n"
    379. 

  379.                   "pushq %1\r\n"
    380. 

  380.                   "retq\r\n"
    381. 

  381.                   :: "r"(stack), "r"(entry) : "memory");
    382. 

  382. }
    383. 

  383. 

  384. int install_syscall_filter (const char * lib_name, unsigned long lib_start,
    385. 

  385.                             unsigned long lib_end, int trace);
    386. 

  386. int install_initial_syscall_filter ();
    387. 

  387. 

  388. extern bool do_fork;
    389. 

  389. extern bool do_trace;
    390. 

  390. 

  391. int init_child (int argc, const char ** argv, const char ** envp);
    392. 

  392. int init_parent (pid_t child, int argc, const char ** argv, const char ** envp);
    393. 

  393. int run_parent (pid_t child, int argc, const char ** argv, const char ** envp);
    394. 

  394. 

  395. void start(void);
    396. 

  396. 

  397. unsigned long pal_addr = 0;
    398. 

  398. 

  399. asm (".global start\r\n"
    400. 

  400.      "  .type start,@function\r\n"
    401. 

  401.      ".global main\r\n"
    402. 

  402.      "  .type do_main,@function\r\n");
    403. 

  403. 

  404. /* At the begining of entry point, rsp starts at argc, then argvs,
    405. 

  405.    envps and auxvs. Here we store rsp to rdi, so it will not be
    406. 

  406.    messed up by function calls */
    407. 

  407. asm ("start:\r\n"
    408. 

  408.      "  movq %rsp, %rdi\r\n"
    409. 

  409.      "  call do_main\r\n");
    410. 

  410. 

  411. struct config_store root_config;
    412. 

  412. 

  413. int free_heaps (void);
    414. 

  414. 

  415. void do_main (void * args)
    416. 

  416. {
    417. 

  417.     void **all_args = (void **) args;
    418. 

  418.     int argc = (uintptr_t) all_args[0];
    419. 

  419.     const char **argv = (const char **) &all_args[1];
    420. 

  420.     const char **envp = argv + argc + 1;
    421. 

  421.     ElfW(Addr) addr = 0;
    422. 

  422.     void ** auxv = (void **) envp;
    423. 

  423.     ElfW(auxv_t) * av;
    424. 

  424.     char cfgbuf[CONFIG_MAX];
    425. 

  425.     int ret = 0;
    426. 

  426. 

  427.     while (*(auxv++));
    428. 

  428. 

  429. /* VERY IMPORTANT: This is the filter that gets applied to the startup code
    430. 

  430.  * before applying the real filter in the function install_syscall_filter. If
    431. 

  431.  * you face any issues, you may have to enable certain syscalls here to
    432. 

  432.  * successfully make changes to startup code.
    433. 

  433.  */
    434. 

  434.     ret = install_initial_syscall_filter();
    435. 

  435.     if (ret < 0) {
    436. 

  436.         printf("Unable to install initial system call filter\n");
    437. 

  437.         goto exit;
    438. 

  438.     }
    439. 

  439. 

  440.     /* occupy PAL_INIT_FD */
    441. 

  441.     INLINE_SYSCALL(dup2, 2, 0, PROC_INIT_FD);
    442. 

  442. 

  443.     for (av = (void *) auxv ; av->a_type != AT_NULL ; av++)
    444. 

  444.         switch (av->a_type) {
    445. 

  445.             case AT_BASE:
    446. 

  446.                 addr = (ElfW(Addr)) av->a_un.a_val;
    447. 

  447.                 break;
    448. 

  448.         }
    449. 

  449. 

  450.     if (!addr) {
    451. 

  451.         asm ("leaq start(%%rip), %0\r\n"
    452. 

  452.              "subq 1f(%%rip), %0\r\n"
    453. 

  453.              ".section\t.data.rel.ro\r\n"
    454. 

  454.              "1:\t.quad start\r\n"
    455. 

  455.              ".previous\r\n"
    456. 

  456.              : "=r" (addr) : : "cc");
    457. 

  457.     }
    458. 

  458. 

  459.     ElfW(Dyn) * dyn = (ElfW(Dyn) *) (addr + (ElfW(Addr)) &_DYNAMIC);
    460. 

  460.     do_relocate(dyn, addr);
    461. 

  461.     init_link_map.l_addr = addr;
    462. 

  462.     init_link_map.l_ld = dyn;
    463. 

  463.     init_link_map.l_name = libname;
    464. 

  464.     ___r_debug.r_map = &init_link_map;
    465. 

  465.     ___r_debug.r_ldbase = addr;
    466. 

  466. 

  467.     int manifest;
    468. 

  468.     if (!argc || (manifest = find_manifest(&argc, &argv)) < 0) {
    469. 

  469.         printf("USAGE: %s [executable|manifest] args ...\n", libname);
    470. 

  470.         goto exit;
    471. 

  471.     }
    472. 

  472. 

  473.     ret = load_manifest(manifest, &root_config);
    474. 

  474.     if (ret < 0)
    475. 

  475.         goto exit;
    476. 

  476. 

  477.     if (!execname) {
    478. 

  478.         if (get_config(&root_config, "loader.exec", cfgbuf, CONFIG_MAX) > 0
    479. 

  479.             && is_file_uri(cfgbuf))
    480. 

  480.             execname = file_uri_to_path(cfgbuf, strlen(cfgbuf));
    481. 

  481.     }
    482. 

  482. 

  483.     pid_t pid = 0;
    484. 

  484. 

  485.     if (do_fork && (pid = INLINE_SYSCALL(fork, 0)) > 0) {
    486. 

  486.         ret = run_parent(pid, argc, argv, envp);
    487. 

  487.         goto exit;
    488. 

  488.     }
    489. 

  489. 

  490.     if (IS_ERR(pid)) {
    491. 

  491.         ret = -ERRNO(pid);
    492. 

  492.         goto exit;
    493. 

  493.     }
    494. 

  494. 

  495.     unsigned long pal_entry = 0;
    496. 

  496.     unsigned long pal_start = 0;
    497. 

  497.     unsigned long pal_end = 0;
    498. 

  498.     unsigned long pal_phoff = 0;
    499. 

  499.     int pal_phnum = 0;
    500. 

  500. 

  501.     ret = load_static(PAL_LOADER, &pal_entry, &pal_addr, &pal_start, &pal_end,
    502. 

  502.                       &pal_phoff, &pal_phnum);
    503. 

  503.     if (ret < 0) {
    504. 

  504.         printf("Unable to load PAL loader\n");
    505. 

  505.         goto exit;
    506. 

  506.     }
    507. 

  507. 

  508.     if (!pal_sec_info_addr)
    509. 

  509.         goto exit;
    510. 

  510. 

  511.     int rand = INLINE_SYSCALL(open, 2, "/dev/urandom", O_RDONLY);
    512. 

  512.     if (IS_ERR(rand)) {
    513. 

  513.         ret = -ERRNO(rand);
    514. 

  514.         goto exit;
    515. 

  515.     }
    516. 

  516. 

  517.     ret = INLINE_SYSCALL(mkdir, 2, GRAPHENE_PIPEDIR, 0777);
    518. 

  518. 

  519.     if (IS_ERR(ret) && ERRNO(ret) != EEXIST) {
    520. 

  520.         if (ERRNO(ret) == ENOENT) {
    521. 

  521.             ret = INLINE_SYSCALL(mkdir, 2, GRAPHENE_TEMPDIR, 0777);
    522. 

  522. 

  523.             if (!IS_ERR(ret)) {
    524. 

  524.                 INLINE_SYSCALL(chmod, 2, GRAPHENE_TEMPDIR, 0777);
    525. 

  525.                 ret = INLINE_SYSCALL(mkdir, 2, GRAPHENE_PIPEDIR, 0777);
    526. 

  526.             }
    527. 

  527.         }
    528. 

  528. 

  529.         if (IS_ERR(ret))
    530. 

  530.             goto exit;
    531. 

  531.     }
    532. 

  532. 

  533.     if (!IS_ERR(ret))
    534. 

  534.         INLINE_SYSCALL(chmod, 2, GRAPHENE_PIPEDIR, 0777);
    535. 

  535. 

  536.     unsigned int domainid = 0;
    537. 

  537.     char * tmpdir = __alloca(sizeof(GRAPHENE_PIPEDIR) + 12);
    538. 

  538.     memcpy(tmpdir, GRAPHENE_PIPEDIR, sizeof(GRAPHENE_PIPEDIR));
    539. 

  539.     tmpdir[sizeof(GRAPHENE_PIPEDIR) - 1] = '/';
    540. 

  540. 

  541.     while (!domainid) {
    542. 

  542.         ret = INLINE_SYSCALL(read, 3, rand, &domainid,
    543. 

  543.                              sizeof(unsigned int));
    544. 

  544.         if (IS_ERR(ret)) {
    545. 

  545.             ret = -ERRNO(ret);
    546. 

  546.             goto exit;
    547. 

  547.         }
    548. 

  548. 

  549.         if (domainid) {
    550. 

  550.             snprintf(tmpdir + sizeof(GRAPHENE_PIPEDIR), 12, "%08x", domainid);
    551. 

  551.             ret = INLINE_SYSCALL(mkdir, 2, tmpdir, 0700);
    552. 

  552.             if (IS_ERR(ret)) {
    553. 

  553.                 if ((ret = -ERRNO(ret)) != -EEXIST)
    554. 

  554.                     goto exit;
    555. 

  555. 

  556.                 domainid = 0;
    557. 

  557.             }
    558. 

  558.         }
    559. 

  559.     }
    560. 

  560. 

  561.     snprintf(pal_sec_info_addr->pipe_prefix, PIPE_MAX, "%08x", domainid);
    562. 

  562. 

  563.     unsigned short mcast_port = 0;
    564. 

  564.     ret = INLINE_SYSCALL(read, 3, rand, &mcast_port, sizeof(mcast_port));
    565. 

  565.     if (IS_ERR(ret)) {
    566. 

  566.         ret = -ERRNO(ret);
    567. 

  567.         goto exit;
    568. 

  568.     }
    569. 

  569.     if (mcast_port < 1024) mcast_port += 1024;
    570. 

  570. 

  571.     pal_sec_info_addr->domain_id    = domainid;
    572. 

  572.     pal_sec_info_addr->rand_gen     = rand;
    573. 

  573.     pal_sec_info_addr->mcast_port   = mcast_port;
    574. 

  574.     pal_sec_info_addr->_dl_debug_state = &___dl_debug_state;
    575. 

  575.     pal_sec_info_addr->_r_debug     = &___r_debug;
    576. 

  576. 

  577.     ret = init_child(argc, argv, envp);
    578. 

  578.     if (ret < 0)
    579. 

  579.         goto exit;
    580. 

  580. 

  581.     free_heaps();
    582. 

  582. 

  583.     /* free PAL_INIT_FD */
    584. 

  584.     INLINE_SYSCALL(close, 1, PROC_INIT_FD);
    585. 

  585. 

  586.     ret = install_syscall_filter(libname, pal_start, pal_end, do_trace);
    587. 

  587.     if (ret < 0) {
    588. 

  588.         printf("Unable to install system call filter\n");
    589. 

  589.         goto exit;
    590. 

  590.     }
    591. 

  591. 

  592.     /* after installing syscall, you can't execute any system call */
    593. 

  593. 

  594.     for (av = (void *) auxv ; av->a_type != AT_NULL ; av++)
    595. 

  595.         switch (av->a_type) {
    596. 

  596.             case AT_ENTRY:
    597. 

  597.                 av->a_un.a_val = pal_entry;
    598. 

  598.                 break;
    599. 

  599.             case AT_BASE:
    600. 

  600.                 av->a_un.a_val = pal_start;
    601. 

  601.                 break;
    602. 

  602.             case AT_PHDR:
    603. 

  603.                 av->a_un.a_val = pal_start + pal_phoff;
    604. 

  604.                 break;
    605. 

  605.             case AT_PHNUM:
    606. 

  606.                 av->a_un.a_val = pal_phnum;
    607. 

  607.                 break;
    608. 

  608.         }
    609. 

  609. 

  610.     run_library(pal_entry, envp, argc, argv);
    611. 

  611. 

  612. exit:
    613. 

  613.     INLINE_SYSCALL(exit_group, 1, ret);
    614. 

  614. }
    615.