This is the mail archive of the
newlib@sourceware.org
mailing list for the newlib project.
[PATCH v1 00/10] Add Stack Smashing Protection and Object Size Checking
- From: Yaakov Selkowitz <yselkowi at redhat dot com>
- To: newlib at sourceware dot org
- Date: Tue, 31 Oct 2017 23:52:36 -0500
- Subject: [PATCH v1 00/10] Add Stack Smashing Protection and Object Size Checking
- Authentication-results: sourceware.org; auth=none
- Authentication-results: ext-mx10.extmail.prod.ext.phx2.redhat.com; dmarc=none (p=none dis=none) header.from=redhat.com
- Authentication-results: ext-mx10.extmail.prod.ext.phx2.redhat.com; spf=fail smtp.mailfrom=yselkowi at redhat dot com
- Dmarc-filter: OpenDMARC Filter v1.3.2 mx1.redhat.com 5F3F15F73A
This is an initial draft; I am using the topic/ssp branch for development
of this feature.
In the process of overhauling our feature test macros, I discovered that
GCC's libssp implementation of Object Size Checking (-D_FORTIFY_SOURCE=*) is
completely broken and possibly unfixable (CVE-2016-4973). Therefore, it
seems the only way to make this work is to integrate it to Newlib itself like
other libc's.
I used NetBSD as the basis for much of this. While relatively limited in
coverage compared to glibc (which we can't take from), it should provide the
foundation needed to add more coverage in the future.
This does require some minor changes in configuring GCC because its libssp
would conflict with this (as it similarly conflicts with glibc), as noted in
the commit messages.
There is probably a more portable way of getting a random canary for the
benefit of bare metal targets (since arc4random required getentropy), but
the terminator canary does work (tested with mmix target).
Yaakov Selkowitz (10):
ssp: add APIs for Stack Smashing Protection (-fstack-protector*)
ssp: add Object Size Checking for basic string functions
ssp: add Object Size Checking for bcopy, bzero
ssp: add Object Size Checking for basic stdio functions
ssp: add Object Size Checking for basic unistd.h functions
ssp: document _FORTIFY_SOURCE with the feature test macros
ssp: add build infrastructure
ssp: install headers
cygwin: export SSP functions
cygwin: create libssp compatibility import library
newlib/Makefile.am | 4 +
newlib/Makefile.in | 4 +
newlib/libc/Makefile.am | 4 +-
newlib/libc/Makefile.in | 15 +-
newlib/libc/configure | 3 +-
newlib/libc/configure.in | 2 +-
newlib/libc/include/ssp/ssp.h | 93 +++++
newlib/libc/include/ssp/stdio.h | 74 ++++
newlib/libc/include/ssp/string.h | 112 ++++++
newlib/libc/include/ssp/strings.h | 48 +++
newlib/libc/include/ssp/unistd.h | 51 +++
newlib/libc/include/stdio.h | 4 +
newlib/libc/include/string.h | 4 +
newlib/libc/include/strings.h | 4 +
newlib/libc/include/sys/features.h | 7 +-
newlib/libc/include/sys/unistd.h | 10 +
newlib/libc/ssp/Makefile.am | 71 ++++
newlib/libc/ssp/Makefile.in | 714 +++++++++++++++++++++++++++++++++
newlib/libc/ssp/chk_fail.c | 13 +
newlib/libc/ssp/fgets_chk.c | 55 +++
newlib/libc/ssp/gets_chk.c | 78 ++++
newlib/libc/ssp/memcpy_chk.c | 54 +++
newlib/libc/ssp/memmove_chk.c | 50 +++
newlib/libc/ssp/mempcpy_chk.c | 21 +
newlib/libc/ssp/memset_chk.c | 49 +++
newlib/libc/ssp/snprintf_chk.c | 59 +++
newlib/libc/ssp/sprintf_chk.c | 63 +++
newlib/libc/ssp/stack_protector.c | 46 +++
newlib/libc/ssp/stpcpy_chk.c | 58 +++
newlib/libc/ssp/stpncpy_chk.c | 56 +++
newlib/libc/ssp/strcat_chk.c | 62 +++
newlib/libc/ssp/strcpy_chk.c | 55 +++
newlib/libc/ssp/strncat_chk.c | 73 ++++
newlib/libc/ssp/strncpy_chk.c | 55 +++
newlib/libc/ssp/vsnprintf_chk.c | 51 +++
newlib/libc/ssp/vsprintf_chk.c | 60 +++
winsup/cygwin/Makefile.in | 5 +-
winsup/cygwin/common.din | 20 +
winsup/cygwin/include/cygwin/version.h | 7 +-
39 files changed, 2202 insertions(+), 12 deletions(-)
create mode 100644 newlib/libc/include/ssp/ssp.h
create mode 100644 newlib/libc/include/ssp/stdio.h
create mode 100644 newlib/libc/include/ssp/string.h
create mode 100644 newlib/libc/include/ssp/strings.h
create mode 100644 newlib/libc/include/ssp/unistd.h
create mode 100644 newlib/libc/ssp/Makefile.am
create mode 100644 newlib/libc/ssp/Makefile.in
create mode 100644 newlib/libc/ssp/chk_fail.c
create mode 100644 newlib/libc/ssp/fgets_chk.c
create mode 100644 newlib/libc/ssp/gets_chk.c
create mode 100644 newlib/libc/ssp/memcpy_chk.c
create mode 100644 newlib/libc/ssp/memmove_chk.c
create mode 100644 newlib/libc/ssp/mempcpy_chk.c
create mode 100644 newlib/libc/ssp/memset_chk.c
create mode 100644 newlib/libc/ssp/snprintf_chk.c
create mode 100644 newlib/libc/ssp/sprintf_chk.c
create mode 100644 newlib/libc/ssp/stack_protector.c
create mode 100644 newlib/libc/ssp/stpcpy_chk.c
create mode 100644 newlib/libc/ssp/stpncpy_chk.c
create mode 100644 newlib/libc/ssp/strcat_chk.c
create mode 100644 newlib/libc/ssp/strcpy_chk.c
create mode 100644 newlib/libc/ssp/strncat_chk.c
create mode 100644 newlib/libc/ssp/strncpy_chk.c
create mode 100644 newlib/libc/ssp/vsnprintf_chk.c
create mode 100644 newlib/libc/ssp/vsprintf_chk.c
--
2.14.3