2 * Copyright (C) 2015 Josh Poimboeuf <jpoimboe@redhat.com>
4 * This program is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU General Public License
6 * as published by the Free Software Foundation; either version 2
7 * of the License, or (at your option) any later version.
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, see <http://www.gnu.org/licenses/>.
21 * This command analyzes every .o file and ensures the validity of its stack
22 * trace metadata. It enforces a set of rules on asm code and C inline
23 * assembly code so that stack traces can be reliable.
25 * For more information, see tools/objtool/Documentation/stack-validation.txt.
30 #include <subcmd/parse-options.h>
38 #include <linux/hashtable.h>
40 #define ARRAY_SIZE(x) (sizeof(x) / sizeof((x)[0]))
42 #define STATE_FP_SAVED 0x1
43 #define STATE_FP_SETUP 0x2
44 #define STATE_FENTRY 0x4
47 struct list_head list;
48 struct hlist_node hash;
51 unsigned int len, state;
53 unsigned long immediate;
54 bool alt_group, visited;
55 struct symbol *call_dest;
56 struct instruction *jump_dest;
57 struct list_head alts;
62 struct list_head list;
63 struct instruction *insn;
68 struct list_head insn_list;
69 DECLARE_HASHTABLE(insn_hash, 16);
70 struct section *rodata, *whitelist;
71 bool ignore_unreachables, c_file;
77 static struct instruction *find_insn(struct objtool_file *file,
78 struct section *sec, unsigned long offset)
80 struct instruction *insn;
82 hash_for_each_possible(file->insn_hash, insn, hash, offset)
83 if (insn->sec == sec && insn->offset == offset)
89 static struct instruction *next_insn_same_sec(struct objtool_file *file,
90 struct instruction *insn)
92 struct instruction *next = list_next_entry(insn, list);
94 if (&next->list == &file->insn_list || next->sec != insn->sec)
100 #define for_each_insn(file, insn) \
101 list_for_each_entry(insn, &file->insn_list, list)
103 #define func_for_each_insn(file, func, insn) \
104 for (insn = find_insn(file, func->sec, func->offset); \
105 insn && &insn->list != &file->insn_list && \
106 insn->sec == func->sec && \
107 insn->offset < func->offset + func->len; \
108 insn = list_next_entry(insn, list))
110 #define func_for_each_insn_continue_reverse(file, func, insn) \
111 for (insn = list_prev_entry(insn, list); \
112 &insn->list != &file->insn_list && \
113 insn->sec == func->sec && insn->offset >= func->offset; \
114 insn = list_prev_entry(insn, list))
116 #define sec_for_each_insn_from(file, insn) \
117 for (; insn; insn = next_insn_same_sec(file, insn))
121 * Check if the function has been manually whitelisted with the
122 * STACK_FRAME_NON_STANDARD macro, or if it should be automatically whitelisted
123 * due to its use of a context switching instruction.
125 static bool ignore_func(struct objtool_file *file, struct symbol *func)
128 struct instruction *insn;
130 /* check for STACK_FRAME_NON_STANDARD */
131 if (file->whitelist && file->whitelist->rela)
132 list_for_each_entry(rela, &file->whitelist->rela->rela_list, list) {
133 if (rela->sym->type == STT_SECTION &&
134 rela->sym->sec == func->sec &&
135 rela->addend == func->offset)
137 if (rela->sym->type == STT_FUNC && rela->sym == func)
141 /* check if it has a context switching instruction */
142 func_for_each_insn(file, func, insn)
143 if (insn->type == INSN_CONTEXT_SWITCH)
150 * This checks to see if the given function is a "noreturn" function.
152 * For global functions which are outside the scope of this object file, we
153 * have to keep a manual list of them.
155 * For local functions, we have to detect them manually by simply looking for
156 * the lack of a return instruction.
163 static int __dead_end_function(struct objtool_file *file, struct symbol *func,
167 struct instruction *insn;
171 * Unfortunately these have to be hard coded because the noreturn
172 * attribute isn't provided in ELF data.
174 static const char * const global_noreturns[] = {
179 "__module_put_and_exit",
181 "kvm_spurious_fault",
186 if (func->bind == STB_WEAK)
189 if (func->bind == STB_GLOBAL)
190 for (i = 0; i < ARRAY_SIZE(global_noreturns); i++)
191 if (!strcmp(func->name, global_noreturns[i]))
197 func_for_each_insn(file, func, insn) {
200 if (insn->type == INSN_RETURN)
208 * A function can have a sibling call instead of a return. In that
209 * case, the function's dead-end status depends on whether the target
210 * of the sibling call returns.
212 func_for_each_insn(file, func, insn) {
213 if (insn->sec != func->sec ||
214 insn->offset >= func->offset + func->len)
217 if (insn->type == INSN_JUMP_UNCONDITIONAL) {
218 struct instruction *dest = insn->jump_dest;
219 struct symbol *dest_func;
222 /* sibling call to another file */
225 if (dest->sec != func->sec ||
226 dest->offset < func->offset ||
227 dest->offset >= func->offset + func->len) {
228 /* local sibling call */
229 dest_func = find_symbol_by_offset(dest->sec,
234 if (recursion == 5) {
235 WARN_FUNC("infinite recursion (objtool bug!)",
236 dest->sec, dest->offset);
240 return __dead_end_function(file, dest_func,
245 if (insn->type == INSN_JUMP_DYNAMIC && list_empty(&insn->alts))
253 static int dead_end_function(struct objtool_file *file, struct symbol *func)
255 return __dead_end_function(file, func, 0);
259 * Call the arch-specific instruction decoder for all the instructions and add
260 * them to the global instruction list.
262 static int decode_instructions(struct objtool_file *file)
266 unsigned long offset;
267 struct instruction *insn;
270 list_for_each_entry(sec, &file->elf->sections, list) {
272 if (!(sec->sh.sh_flags & SHF_EXECINSTR))
275 for (offset = 0; offset < sec->len; offset += insn->len) {
276 insn = malloc(sizeof(*insn));
277 memset(insn, 0, sizeof(*insn));
279 INIT_LIST_HEAD(&insn->alts);
281 insn->offset = offset;
283 ret = arch_decode_instruction(file->elf, sec, offset,
285 &insn->len, &insn->type,
290 if (!insn->type || insn->type > INSN_LAST) {
291 WARN_FUNC("invalid instruction type %d",
292 insn->sec, insn->offset, insn->type);
296 hash_add(file->insn_hash, &insn->hash, insn->offset);
297 list_add_tail(&insn->list, &file->insn_list);
300 list_for_each_entry(func, &sec->symbol_list, list) {
301 if (func->type != STT_FUNC)
304 if (!find_insn(file, sec, func->offset)) {
305 WARN("%s(): can't find starting instruction",
310 func_for_each_insn(file, func, insn)
320 * Warnings shouldn't be reported for ignored functions.
322 static void add_ignores(struct objtool_file *file)
324 struct instruction *insn;
328 list_for_each_entry(sec, &file->elf->sections, list) {
329 list_for_each_entry(func, &sec->symbol_list, list) {
330 if (func->type != STT_FUNC)
333 if (!ignore_func(file, func))
336 func_for_each_insn(file, func, insn)
337 insn->visited = true;
343 * Find the destination instructions for all jumps.
345 static int add_jump_destinations(struct objtool_file *file)
347 struct instruction *insn;
349 struct section *dest_sec;
350 unsigned long dest_off;
352 for_each_insn(file, insn) {
353 if (insn->type != INSN_JUMP_CONDITIONAL &&
354 insn->type != INSN_JUMP_UNCONDITIONAL)
361 rela = find_rela_by_dest_range(insn->sec, insn->offset,
364 dest_sec = insn->sec;
365 dest_off = insn->offset + insn->len + insn->immediate;
366 } else if (rela->sym->type == STT_SECTION) {
367 dest_sec = rela->sym->sec;
368 dest_off = rela->addend + 4;
369 } else if (rela->sym->sec->idx) {
370 dest_sec = rela->sym->sec;
371 dest_off = rela->sym->sym.st_value + rela->addend + 4;
378 insn->jump_dest = find_insn(file, dest_sec, dest_off);
379 if (!insn->jump_dest) {
382 * This is a special case where an alt instruction
383 * jumps past the end of the section. These are
384 * handled later in handle_group_alt().
386 if (!strcmp(insn->sec->name, ".altinstr_replacement"))
389 WARN_FUNC("can't find jump dest instruction at %s+0x%lx",
390 insn->sec, insn->offset, dest_sec->name,
400 * Find the destination instructions for all calls.
402 static int add_call_destinations(struct objtool_file *file)
404 struct instruction *insn;
405 unsigned long dest_off;
408 for_each_insn(file, insn) {
409 if (insn->type != INSN_CALL)
412 rela = find_rela_by_dest_range(insn->sec, insn->offset,
415 dest_off = insn->offset + insn->len + insn->immediate;
416 insn->call_dest = find_symbol_by_offset(insn->sec,
418 if (!insn->call_dest) {
419 WARN_FUNC("can't find call dest symbol at offset 0x%lx",
420 insn->sec, insn->offset, dest_off);
423 } else if (rela->sym->type == STT_SECTION) {
424 insn->call_dest = find_symbol_by_offset(rela->sym->sec,
426 if (!insn->call_dest ||
427 insn->call_dest->type != STT_FUNC) {
428 WARN_FUNC("can't find call dest symbol at %s+0x%x",
429 insn->sec, insn->offset,
430 rela->sym->sec->name,
435 insn->call_dest = rela->sym;
442 * The .alternatives section requires some extra special care, over and above
443 * what other special sections require:
445 * 1. Because alternatives are patched in-place, we need to insert a fake jump
446 * instruction at the end so that validate_branch() skips all the original
447 * replaced instructions when validating the new instruction path.
449 * 2. An added wrinkle is that the new instruction length might be zero. In
450 * that case the old instructions are replaced with noops. We simulate that
451 * by creating a fake jump as the only new instruction.
453 * 3. In some cases, the alternative section includes an instruction which
454 * conditionally jumps to the _end_ of the entry. We have to modify these
455 * jumps' destinations to point back to .text rather than the end of the
456 * entry in .altinstr_replacement.
458 * 4. It has been requested that we don't validate the !POPCNT feature path
459 * which is a "very very small percentage of machines".
461 static int handle_group_alt(struct objtool_file *file,
462 struct special_alt *special_alt,
463 struct instruction *orig_insn,
464 struct instruction **new_insn)
466 struct instruction *last_orig_insn, *last_new_insn, *insn, *fake_jump;
467 unsigned long dest_off;
469 last_orig_insn = NULL;
471 sec_for_each_insn_from(file, insn) {
472 if (insn->offset >= special_alt->orig_off + special_alt->orig_len)
475 if (special_alt->skip_orig)
476 insn->type = INSN_NOP;
478 insn->alt_group = true;
479 last_orig_insn = insn;
482 if (!next_insn_same_sec(file, last_orig_insn)) {
483 WARN("%s: don't know how to handle alternatives at end of section",
484 special_alt->orig_sec->name);
488 fake_jump = malloc(sizeof(*fake_jump));
490 WARN("malloc failed");
493 memset(fake_jump, 0, sizeof(*fake_jump));
494 INIT_LIST_HEAD(&fake_jump->alts);
495 fake_jump->sec = special_alt->new_sec;
496 fake_jump->offset = -1;
497 fake_jump->type = INSN_JUMP_UNCONDITIONAL;
498 fake_jump->jump_dest = list_next_entry(last_orig_insn, list);
500 if (!special_alt->new_len) {
501 *new_insn = fake_jump;
505 last_new_insn = NULL;
507 sec_for_each_insn_from(file, insn) {
508 if (insn->offset >= special_alt->new_off + special_alt->new_len)
511 last_new_insn = insn;
513 if (insn->type != INSN_JUMP_CONDITIONAL &&
514 insn->type != INSN_JUMP_UNCONDITIONAL)
517 if (!insn->immediate)
520 dest_off = insn->offset + insn->len + insn->immediate;
521 if (dest_off == special_alt->new_off + special_alt->new_len)
522 insn->jump_dest = fake_jump;
524 if (!insn->jump_dest) {
525 WARN_FUNC("can't find alternative jump destination",
526 insn->sec, insn->offset);
531 if (!last_new_insn) {
532 WARN_FUNC("can't find last new alternative instruction",
533 special_alt->new_sec, special_alt->new_off);
537 list_add(&fake_jump->list, &last_new_insn->list);
543 * A jump table entry can either convert a nop to a jump or a jump to a nop.
544 * If the original instruction is a jump, make the alt entry an effective nop
545 * by just skipping the original instruction.
547 static int handle_jump_alt(struct objtool_file *file,
548 struct special_alt *special_alt,
549 struct instruction *orig_insn,
550 struct instruction **new_insn)
552 if (orig_insn->type == INSN_NOP)
555 if (orig_insn->type != INSN_JUMP_UNCONDITIONAL) {
556 WARN_FUNC("unsupported instruction at jump label",
557 orig_insn->sec, orig_insn->offset);
561 *new_insn = list_next_entry(orig_insn, list);
566 * Read all the special sections which have alternate instructions which can be
567 * patched in or redirected to at runtime. Each instruction having alternate
568 * instruction(s) has them added to its insn->alts list, which will be
569 * traversed in validate_branch().
571 static int add_special_section_alts(struct objtool_file *file)
573 struct list_head special_alts;
574 struct instruction *orig_insn, *new_insn;
575 struct special_alt *special_alt, *tmp;
576 struct alternative *alt;
579 ret = special_get_alts(file->elf, &special_alts);
583 list_for_each_entry_safe(special_alt, tmp, &special_alts, list) {
584 alt = malloc(sizeof(*alt));
586 WARN("malloc failed");
591 orig_insn = find_insn(file, special_alt->orig_sec,
592 special_alt->orig_off);
594 WARN_FUNC("special: can't find orig instruction",
595 special_alt->orig_sec, special_alt->orig_off);
601 if (!special_alt->group || special_alt->new_len) {
602 new_insn = find_insn(file, special_alt->new_sec,
603 special_alt->new_off);
605 WARN_FUNC("special: can't find new instruction",
606 special_alt->new_sec,
607 special_alt->new_off);
613 if (special_alt->group) {
614 ret = handle_group_alt(file, special_alt, orig_insn,
618 } else if (special_alt->jump_or_nop) {
619 ret = handle_jump_alt(file, special_alt, orig_insn,
625 alt->insn = new_insn;
626 list_add_tail(&alt->list, &orig_insn->alts);
628 list_del(&special_alt->list);
636 static int add_switch_table(struct objtool_file *file, struct symbol *func,
637 struct instruction *insn, struct rela *table,
638 struct rela *next_table)
640 struct rela *rela = table;
641 struct instruction *alt_insn;
642 struct alternative *alt;
644 list_for_each_entry_from(rela, &file->rodata->rela->rela_list, list) {
645 if (rela == next_table)
648 if (rela->sym->sec != insn->sec ||
649 rela->addend <= func->offset ||
650 rela->addend >= func->offset + func->len)
653 alt_insn = find_insn(file, insn->sec, rela->addend);
655 WARN("%s: can't find instruction at %s+0x%x",
656 file->rodata->rela->name, insn->sec->name,
661 alt = malloc(sizeof(*alt));
663 WARN("malloc failed");
667 alt->insn = alt_insn;
668 list_add_tail(&alt->list, &insn->alts);
675 * find_switch_table() - Given a dynamic jump, find the switch jump table in
676 * .rodata associated with it.
678 * There are 3 basic patterns:
680 * 1. jmpq *[rodata addr](,%reg,8)
682 * This is the most common case by far. It jumps to an address in a simple
683 * jump table which is stored in .rodata.
685 * 2. jmpq *[rodata addr](%rip)
687 * This is caused by a rare GCC quirk, currently only seen in three driver
688 * functions in the kernel, only with certain obscure non-distro configs.
690 * As part of an optimization, GCC makes a copy of an existing switch jump
691 * table, modifies it, and then hard-codes the jump (albeit with an indirect
692 * jump) to use a single entry in the table. The rest of the jump table and
693 * some of its jump targets remain as dead code.
695 * In such a case we can just crudely ignore all unreachable instruction
696 * warnings for the entire object file. Ideally we would just ignore them
697 * for the function, but that would require redesigning the code quite a
698 * bit. And honestly that's just not worth doing: unreachable instruction
699 * warnings are of questionable value anyway, and this is such a rare issue.
701 * 3. mov [rodata addr],%reg1
702 * ... some instructions ...
703 * jmpq *(%reg1,%reg2,8)
705 * This is a fairly uncommon pattern which is new for GCC 6. As of this
706 * writing, there are 11 occurrences of it in the allmodconfig kernel.
708 * TODO: Once we have DWARF CFI and smarter instruction decoding logic,
709 * ensure the same register is used in the mov and jump instructions.
711 static struct rela *find_switch_table(struct objtool_file *file,
713 struct instruction *insn)
715 struct rela *text_rela, *rodata_rela;
716 struct instruction *orig_insn = insn;
718 text_rela = find_rela_by_dest_range(insn->sec, insn->offset, insn->len);
719 if (text_rela && text_rela->sym == file->rodata->sym) {
721 rodata_rela = find_rela_by_dest(file->rodata,
727 rodata_rela = find_rela_by_dest(file->rodata,
728 text_rela->addend + 4);
731 file->ignore_unreachables = true;
736 func_for_each_insn_continue_reverse(file, func, insn) {
737 if (insn->type == INSN_JUMP_DYNAMIC)
740 /* allow small jumps within the range */
741 if (insn->type == INSN_JUMP_UNCONDITIONAL &&
743 (insn->jump_dest->offset <= insn->offset ||
744 insn->jump_dest->offset >= orig_insn->offset))
747 text_rela = find_rela_by_dest_range(insn->sec, insn->offset,
749 if (text_rela && text_rela->sym == file->rodata->sym)
750 return find_rela_by_dest(file->rodata,
757 static int add_func_switch_tables(struct objtool_file *file,
760 struct instruction *insn, *prev_jump = NULL;
761 struct rela *rela, *prev_rela = NULL;
764 func_for_each_insn(file, func, insn) {
765 if (insn->type != INSN_JUMP_DYNAMIC)
768 rela = find_switch_table(file, func, insn);
773 * We found a switch table, but we don't know yet how big it
774 * is. Don't add it until we reach the end of the function or
775 * the beginning of another switch table in the same function.
778 ret = add_switch_table(file, func, prev_jump, prev_rela,
789 ret = add_switch_table(file, func, prev_jump, prev_rela, NULL);
798 * For some switch statements, gcc generates a jump table in the .rodata
799 * section which contains a list of addresses within the function to jump to.
800 * This finds these jump tables and adds them to the insn->alts lists.
802 static int add_switch_table_alts(struct objtool_file *file)
808 if (!file->rodata || !file->rodata->rela)
811 list_for_each_entry(sec, &file->elf->sections, list) {
812 list_for_each_entry(func, &sec->symbol_list, list) {
813 if (func->type != STT_FUNC)
816 ret = add_func_switch_tables(file, func);
825 static int decode_sections(struct objtool_file *file)
829 ret = decode_instructions(file);
835 ret = add_jump_destinations(file);
839 ret = add_call_destinations(file);
843 ret = add_special_section_alts(file);
847 ret = add_switch_table_alts(file);
854 static bool is_fentry_call(struct instruction *insn)
856 if (insn->type == INSN_CALL &&
857 insn->call_dest->type == STT_NOTYPE &&
858 !strcmp(insn->call_dest->name, "__fentry__"))
864 static bool has_modified_stack_frame(struct instruction *insn)
866 return (insn->state & STATE_FP_SAVED) ||
867 (insn->state & STATE_FP_SETUP);
870 static bool has_valid_stack_frame(struct instruction *insn)
872 return (insn->state & STATE_FP_SAVED) &&
873 (insn->state & STATE_FP_SETUP);
876 static unsigned int frame_state(unsigned long state)
878 return (state & (STATE_FP_SAVED | STATE_FP_SETUP));
882 * Follow the branch starting at the given instruction, and recursively follow
883 * any other branches (jumps). Meanwhile, track the frame pointer state at
884 * each instruction and validate all the rules described in
885 * tools/objtool/Documentation/stack-validation.txt.
887 static int validate_branch(struct objtool_file *file,
888 struct instruction *first, unsigned char first_state)
890 struct alternative *alt;
891 struct instruction *insn;
893 struct symbol *func = NULL;
901 if (insn->alt_group && list_empty(&insn->alts)) {
902 WARN_FUNC("don't know how to handle branch to middle of alternative instruction group",
908 if (file->c_file && insn->func) {
909 if (func && func != insn->func) {
910 WARN("%s() falls through to next function %s()",
911 func->name, insn->func->name);
919 if (frame_state(insn->state) != frame_state(state)) {
920 WARN_FUNC("frame pointer state mismatch",
928 insn->visited = true;
931 list_for_each_entry(alt, &insn->alts, list) {
932 ret = validate_branch(file, alt->insn, state);
937 switch (insn->type) {
941 if (state & STATE_FP_SAVED) {
942 WARN_FUNC("duplicate frame pointer save",
946 state |= STATE_FP_SAVED;
952 if (state & STATE_FP_SETUP) {
953 WARN_FUNC("duplicate frame pointer setup",
957 state |= STATE_FP_SETUP;
961 case INSN_FP_RESTORE:
963 if (has_valid_stack_frame(insn))
964 state &= ~STATE_FP_SETUP;
966 state &= ~STATE_FP_SAVED;
971 if (!nofp && has_modified_stack_frame(insn)) {
972 WARN_FUNC("return without frame pointer restore",
979 if (is_fentry_call(insn)) {
980 state |= STATE_FENTRY;
984 ret = dead_end_function(file, insn->call_dest);
991 case INSN_CALL_DYNAMIC:
992 if (!nofp && !has_valid_stack_frame(insn)) {
993 WARN_FUNC("call without frame pointer save/setup",
999 case INSN_JUMP_CONDITIONAL:
1000 case INSN_JUMP_UNCONDITIONAL:
1001 if (insn->jump_dest) {
1002 ret = validate_branch(file, insn->jump_dest,
1006 } else if (has_modified_stack_frame(insn)) {
1007 WARN_FUNC("sibling call from callable instruction with changed frame pointer",
1010 } /* else it's a sibling call */
1012 if (insn->type == INSN_JUMP_UNCONDITIONAL)
1017 case INSN_JUMP_DYNAMIC:
1018 if (list_empty(&insn->alts) &&
1019 has_modified_stack_frame(insn)) {
1020 WARN_FUNC("sibling call from callable instruction with changed frame pointer",
1034 insn = next_insn_same_sec(file, insn);
1036 WARN("%s: unexpected end of section", sec->name);
1044 static bool is_gcov_insn(struct instruction *insn)
1047 struct section *sec;
1049 unsigned long offset;
1051 rela = find_rela_by_dest_range(insn->sec, insn->offset, insn->len);
1055 if (rela->sym->type != STT_SECTION)
1058 sec = rela->sym->sec;
1059 offset = rela->addend + insn->offset + insn->len - rela->offset;
1061 list_for_each_entry(sym, &sec->symbol_list, list) {
1062 if (sym->type != STT_OBJECT)
1065 if (offset >= sym->offset && offset < sym->offset + sym->len)
1066 return (!memcmp(sym->name, "__gcov0.", 8));
1072 static bool is_kasan_insn(struct instruction *insn)
1074 return (insn->type == INSN_CALL &&
1075 !strcmp(insn->call_dest->name, "__asan_handle_no_return"));
1078 static bool is_ubsan_insn(struct instruction *insn)
1080 return (insn->type == INSN_CALL &&
1081 !strcmp(insn->call_dest->name,
1082 "__ubsan_handle_builtin_unreachable"));
1085 static bool ignore_unreachable_insn(struct symbol *func,
1086 struct instruction *insn)
1090 if (insn->type == INSN_NOP)
1093 if (is_gcov_insn(insn))
1097 * Check if this (or a subsequent) instruction is related to
1098 * CONFIG_UBSAN or CONFIG_KASAN.
1100 * End the search at 5 instructions to avoid going into the weeds.
1102 for (i = 0; i < 5; i++) {
1104 if (is_kasan_insn(insn) || is_ubsan_insn(insn))
1107 if (insn->type == INSN_JUMP_UNCONDITIONAL && insn->jump_dest) {
1108 insn = insn->jump_dest;
1112 if (insn->offset + insn->len >= func->offset + func->len)
1114 insn = list_next_entry(insn, list);
1120 static int validate_functions(struct objtool_file *file)
1122 struct section *sec;
1123 struct symbol *func;
1124 struct instruction *insn;
1125 int ret, warnings = 0;
1127 list_for_each_entry(sec, &file->elf->sections, list) {
1128 list_for_each_entry(func, &sec->symbol_list, list) {
1129 if (func->type != STT_FUNC)
1132 insn = find_insn(file, sec, func->offset);
1136 ret = validate_branch(file, insn, 0);
1141 list_for_each_entry(sec, &file->elf->sections, list) {
1142 list_for_each_entry(func, &sec->symbol_list, list) {
1143 if (func->type != STT_FUNC)
1146 func_for_each_insn(file, func, insn) {
1150 insn->visited = true;
1152 if (file->ignore_unreachables || warnings ||
1153 ignore_unreachable_insn(func, insn))
1156 WARN_FUNC("function has unreachable instruction", insn->sec, insn->offset);
1165 static int validate_uncallable_instructions(struct objtool_file *file)
1167 struct instruction *insn;
1170 for_each_insn(file, insn) {
1171 if (!insn->visited && insn->type == INSN_RETURN) {
1172 WARN_FUNC("return instruction outside of a callable function",
1173 insn->sec, insn->offset);
1181 static void cleanup(struct objtool_file *file)
1183 struct instruction *insn, *tmpinsn;
1184 struct alternative *alt, *tmpalt;
1186 list_for_each_entry_safe(insn, tmpinsn, &file->insn_list, list) {
1187 list_for_each_entry_safe(alt, tmpalt, &insn->alts, list) {
1188 list_del(&alt->list);
1191 list_del(&insn->list);
1192 hash_del(&insn->hash);
1195 elf_close(file->elf);
1198 const char * const check_usage[] = {
1199 "objtool check [<options>] file.o",
1203 int cmd_check(int argc, const char **argv)
1205 struct objtool_file file;
1206 int ret, warnings = 0;
1208 const struct option options[] = {
1209 OPT_BOOLEAN('f', "no-fp", &nofp, "Skip frame pointer validation"),
1213 argc = parse_options(argc, argv, options, check_usage, 0);
1216 usage_with_options(check_usage, options);
1220 file.elf = elf_open(objname);
1222 fprintf(stderr, "error reading elf file %s\n", objname);
1226 INIT_LIST_HEAD(&file.insn_list);
1227 hash_init(file.insn_hash);
1228 file.whitelist = find_section_by_name(file.elf, "__func_stack_frame_non_standard");
1229 file.rodata = find_section_by_name(file.elf, ".rodata");
1230 file.ignore_unreachables = false;
1231 file.c_file = find_section_by_name(file.elf, ".comment");
1233 ret = decode_sections(&file);
1238 ret = validate_functions(&file);
1243 ret = validate_uncallable_instructions(&file);
1251 /* ignore warnings for now until we get all the code cleaned up */
1252 if (ret || warnings)
projects / cascardo / linux.git / blob