libc/sys/stack_protector.c

*ea6088e7Sguenther/*	$OpenBSD: stack_protector.c,v 1.24 2017/11/29 05:13:57 guenther Exp $	*/
fb929c0dSmiod
fb929c0dSmiod/*
fb929c0dSmiod * Copyright (c) 2002 Hiroaki Etoh, Federico G. Schwindt, and Miodrag Vallat.
fb929c0dSmiod * All rights reserved.
fb929c0dSmiod *
fb929c0dSmiod * Redistribution and use in source and binary forms, with or without
fb929c0dSmiod * modification, are permitted provided that the following conditions
fb929c0dSmiod * are met:
fb929c0dSmiod * 1. Redistributions of source code must retain the above copyright
fb929c0dSmiod *    notice, this list of conditions and the following disclaimer.
fb929c0dSmiod * 2. Redistributions in binary form must reproduce the above copyright
fb929c0dSmiod *    notice, this list of conditions and the following disclaimer in the
fb929c0dSmiod *    documentation and/or other materials provided with the distribution.
fb929c0dSmiod *
fb929c0dSmiod * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS OR
fb929c0dSmiod * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
fb929c0dSmiod * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
fb929c0dSmiod * DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY DIRECT,
fb929c0dSmiod * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
fb929c0dSmiod * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
fb929c0dSmiod * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
fb929c0dSmiod * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
fb929c0dSmiod * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
fb929c0dSmiod * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
fb929c0dSmiod * POSSIBILITY OF SUCH DAMAGE.
fb929c0dSmiod *
fb929c0dSmiod */
fb929c0dSmiod
26fda0efSdavid#include <signal.h>
e4224292Sguenther#include <stdlib.h>
26fda0efSdavid#include <string.h>
fb929c0dSmiod#include <syslog.h>
26fda0efSdavid#include <unistd.h>
fb929c0dSmiod
6897476fSguenther/*
6897476fSguenther * Note: test below is for PIC not __PIC__.  This code must only be included
6897476fSguenther * in the shared library and not in libc.a, but __PIC__ is set for libc.a
6897476fSguenther * objects where PIE is supported
6897476fSguenther *
6897476fSguenther * XXX would this work? #if defined(__PIC__) && !defined(__PIE__)
6897476fSguenther * XXX any archs which are always PIC (like mips64) but don't have PIE?
6897476fSguenther */
6897476fSguenther#ifdef PIC
6897476fSguenther#include <../csu/os-note-elf.h>
6897476fSguenther
6897476fSguentherlong __guard_local __dso_hidden __attribute__((section(".openbsd.randomdata")));
6897476fSguenther#endif /* PIC */
6897476fSguenther
fb929c0dSmiodvoid
e6f98e3aSguenther__stack_smash_handler(const char func[], int damaged)
fb929c0dSmiod{
fb929c0dSmiod	struct sigaction sa;
dcbc515cSderaadt	sigset_t mask;
0e278963Sderaadt	char buf[1024];
fb929c0dSmiod
dcbc515cSderaadt	/* Immediately block all signal handlers from running code */
dcbc515cSderaadt	sigfillset(&mask);
dcbc515cSderaadt	sigdelset(&mask, SIGABRT);
60d49506Sguenther	sigprocmask(SIG_SETMASK, &mask, NULL);
dcbc515cSderaadt
0e278963Sderaadt	/* <10> is LOG_CRIT */
2282c45eScanacar	strlcpy(buf, "<10>", sizeof buf);
0e278963Sderaadt
2282c45eScanacar	/* Make sure progname does not fill the whole buffer */
2282c45eScanacar	strlcat(buf, __progname, sizeof(buf) / 2 );
2282c45eScanacar
0e278963Sderaadt	strlcat(buf, ": stack overflow in function ", sizeof buf);
0e278963Sderaadt	strlcat(buf, func, sizeof buf);
0e278963Sderaadt
46afc4a4Sbluhm	sendsyslog(buf, strlen(buf), LOG_CONS);
fb929c0dSmiod
60d49506Sguenther	memset(&sa, 0, sizeof(sa));
fb929c0dSmiod	sigemptyset(&sa.sa_mask);
fb929c0dSmiod	sa.sa_flags = 0;
fb929c0dSmiod	sa.sa_handler = SIG_DFL;
fb929c0dSmiod	sigaction(SIGABRT, &sa, NULL);
fb929c0dSmiod
60d49506Sguenther	thrkill(0, SIGABRT, NULL);
fb929c0dSmiod
fb929c0dSmiod	_exit(127);
fb929c0dSmiod}
*ea6088e7SguentherDEF_BUILTIN(__stack_smash_handler);