From 906bb8f393035000b0ec8508d3a91105fa1b1b54 Mon Sep 17 00:00:00 2001 From: Joe Lawrence Date: Thu, 29 Feb 2024 15:20:53 -0500 Subject: [PATCH] kmod: maintain syscall metadata sections in kpatch syscall macros The KPATCH_SYSCALL_DEFINEn macros in kpatch-syscall.h do not provide the same syscall metadata (saved in the __syscalls_metadata and _ftrace_events ELF sections) as the kernel. These same macros also instruct kpatch-build to ignore changes to these sections. This works fine as long as there are other unmodified syscalls present in the object file. However, if not, the kpatch syscall macros may result in either metadata ELF sections not appearing in the patched object file. The create-diff-object program expects to encounter any ELF section that has been marked by KPATCH_IGNORE_SECTION in the patched object file. To avoid this limitation, create dummy __syscalls_metadata and _ftrace_events entries for the kpatch-modified syscall. The specific values shouldn't matter since their sections will still be marked with KPATCH_IGNORE_SECTION and now their presence will be guarenteed for create-diff-object. Closes: #1375 ("kpatch-build error when modifying an object file's only syscall") Signed-off-by: Joe Lawrence --- kmod/patch/kpatch-syscall.h | 18 ++++++++++++++---- 1 file changed, 14 insertions(+), 4 deletions(-) diff --git a/kmod/patch/kpatch-syscall.h b/kmod/patch/kpatch-syscall.h index 3ff9189f6..ec8d24d53 100644 --- a/kmod/patch/kpatch-syscall.h +++ b/kmod/patch/kpatch-syscall.h @@ -15,14 +15,24 @@ * being a 'kpatch' prefix added to the __do_sys##name() function name. This * causes kpatch-build to treat it as a new function (due to * its new name), and its caller __se_sys##name() function is inlined by its own - * caller __x64_sys##name() function, which has an fentry hook. - + * caller __x64_sys##name() function, which has an fentry hook. Since the + * kpatch versions do not provide SYSCALL_METADATA, specifically entries in the + * __syscalls_metadata and _ftrace_events sections, provide dummy values in + * these sections and instruct kpatch-build to ignore changes to them. + * * To patch a syscall, just replace the use of the SYSCALL_DEFINE1 (or similar) * macro with the "KPATCH_" prefixed version. */ -#define KPATCH_IGNORE_SYSCALL_SECTIONS \ +#define KPATCH_SYSCALL_METADATA(sname) \ + static struct syscall_metadata __used \ + __section("__syscalls_metadata") \ + *__p_syscall_meta_##sname = NULL; \ KPATCH_IGNORE_SECTION("__syscalls_metadata"); \ + \ + static struct trace_event_call __used \ + __section("_ftrace_events") \ + *__event_enter_##sname = NULL; \ KPATCH_IGNORE_SECTION("_ftrace_events") #define KPATCH_SYSCALL_DEFINE1(name, ...) KPATCH_SYSCALL_DEFINEx(1, _##name, __VA_ARGS__) @@ -33,7 +43,7 @@ #define KPATCH_SYSCALL_DEFINE6(name, ...) KPATCH_SYSCALL_DEFINEx(6, _##name, __VA_ARGS__) #define KPATCH_SYSCALL_DEFINEx(x, sname, ...) \ - KPATCH_IGNORE_SYSCALL_SECTIONS; \ + KPATCH_SYSCALL_METADATA(sname); \ __KPATCH_SYSCALL_DEFINEx(x, sname, __VA_ARGS__) #ifdef CONFIG_X86_64