From nobody Fri May 17 11:05:37 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) client-ip=192.237.175.120; envelope-from=xen-devel-bounces@lists.xenproject.org; helo=lists.xenproject.org; Authentication-Results: mx.zohomail.com; spf=pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) smtp.mailfrom=xen-devel-bounces@lists.xenproject.org; dmarc=fail(p=quarantine dis=quarantine) header.from=suse.com Return-Path: Received: from lists.xenproject.org (lists.xenproject.org [192.237.175.120]) by mx.zohomail.com with SMTPS id 1700799489410482.58183546637963; Thu, 23 Nov 2023 20:18:09 -0800 (PST) Received: from list by lists.xenproject.org with outflank-mailman.640119.997937 (Exim 4.92) (envelope-from ) id 1r6NdK-0002Dd-He; Fri, 24 Nov 2023 04:17:38 +0000 Received: by outflank-mailman (output) from mailman id 640119.997937; Fri, 24 Nov 2023 04:17:38 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1r6NdK-0002DW-Ev; Fri, 24 Nov 2023 04:17:38 +0000 Received: by outflank-mailman (input) for mailman id 640119; Fri, 24 Nov 2023 04:17:37 +0000 Received: from se1-gles-flk1-in.inumbo.com ([94.247.172.50] helo=se1-gles-flk1.inumbo.com) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1r6NdJ-0002DL-6g for xen-devel@lists.xenproject.org; Fri, 24 Nov 2023 04:17:37 +0000 Received: from smtp-out2.suse.de (smtp-out2.suse.de [195.135.223.131]) by se1-gles-flk1.inumbo.com (Halon) with ESMTPS id 63d15099-8a80-11ee-9b0e-b553b5be7939; Fri, 24 Nov 2023 05:17:33 +0100 (CET) Received: from imap2.dmz-prg2.suse.org (imap2.dmz-prg2.suse.org [IPv6:2a07:de40:b281:104:10:150:64:98]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by smtp-out2.suse.de (Postfix) with ESMTPS id 937DF1FCEB; Thu, 23 Nov 2023 15:23:12 +0000 (UTC) Received: from imap2.dmz-prg2.suse.org (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by imap2.dmz-prg2.suse.org (Postfix) with ESMTPS id 317A713AA8; Thu, 23 Nov 2023 11:45:14 +0000 (UTC) Received: from dovecot-director2.suse.de ([2a07:de40:b281:106:10:150:64:167]) by imap2.dmz-prg2.suse.org with ESMTPSA id nECkB0o7X2XgZQAAn2gu4w (envelope-from ); Thu, 23 Nov 2023 11:45:14 +0000 X-Outflank-Mailman: Message body and most headers restored to incoming version X-BeenThere: xen-devel@lists.xenproject.org List-Id: Xen developer discussion List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-devel-bounces@lists.xenproject.org Precedence: list Sender: "Xen-devel" X-Inumbo-ID: 63d15099-8a80-11ee-9b0e-b553b5be7939 From: Juergen Gross To: minios-devel@lists.xenproject.org, xen-devel@lists.xenproject.org Cc: samuel.thibault@ens-lyon.org, wl@xen.org, Juergen Gross Subject: [PATCH v2 1/2] Mini-OS: link kernel separately Date: Thu, 23 Nov 2023 12:45:03 +0100 Message-Id: <20231123114504.29329-2-jgross@suse.com> X-Mailer: git-send-email 2.35.3 In-Reply-To: <20231123114504.29329-1-jgross@suse.com> References: <20231123114504.29329-1-jgross@suse.com> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable X-Spamd-Bar: +++++++++++++++ X-Spam-Score: 15.00 X-Rspamd-Server: rspamd1 X-Spam-Level: *************** X-Rspamd-Queue-Id: 937DF1FCEB X-Spam-Flag: YES Authentication-Results: smtp-out2.suse.de; dkim=none; dmarc=fail reason="No valid SPF, No valid DKIM" header.from=suse.com (policy=quarantine); spf=fail (smtp-out2.suse.de: domain of jgross@suse.com does not designate 2a07:de40:b281:104:10:150:64:98 as permitted sender) smtp.mailfrom=jgross@suse.com X-Spamd-Result: default: False [15.00 / 50.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_FAIL(1.00)[-all]; SPAMHAUS_XBL(0.00)[2a07:de40:b281:104:10:150:64:98:from]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_MISSING_CHARSET(2.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; BROKEN_CONTENT_TYPE(1.50)[]; DMARC_POLICY_QUARANTINE(1.50)[suse.com : No valid SPF, No valid DKIM,quarantine]; RCPT_COUNT_FIVE(0.00)[5]; RCVD_COUNT_THREE(0.00)[3]; ARC_NA(0.00)[]; MX_GOOD(-0.01)[]; MID_CONTAINS_FROM(1.00)[]; DBL_BLOCKED_OPENRESOLVER(0.00)[ens-lyon.org:email]; FUZZY_BLOCKED(0.00)[rspamd.com]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(2.20)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_ALL(0.00)[]; BAYES_HAM(-0.05)[59.34%] X-Spam: Yes X-ZM-MESSAGEID: 1700799492259100001 Content-Type: text/plain; charset="utf-8" Add an additional link step with linking all Mini-OS kernel binaries into a single object file. This is done in preparation of hiding Mini-OS internal symbols before linking the kernel with libraries and an application. Signed-off-by: Juergen Gross Reviewed-by: Samuel Thibault --- Makefile | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/Makefile b/Makefile index 7ee181a2..85c6db75 100644 --- a/Makefile +++ b/Makefile @@ -164,8 +164,11 @@ endif $(OBJ_DIR)/arch/x86/minios-x86%.lds: arch/x86/minios-x86.lds.S $(CPP) $(ASFLAGS) -P $< -o $@ =20 -$(OBJ_DIR)/$(TARGET): $(OBJS) $(APP_O) arch_lib $(OBJ_DIR)/$(TARGET_ARCH_D= IR)/minios-$(MINIOS_TARGET_ARCH).lds - $(LD) -r $(LDFLAGS) $(HEAD_OBJ) $(APP_O) $(OBJS) $(LDARCHLIB) $(LDLIBS) -= o $@.o +$(OBJ_DIR)/$(TARGET)-kern.o: $(OBJS) arch_lib $(OBJ_DIR)/$(TARGET_ARCH_DIR= )/minios-$(MINIOS_TARGET_ARCH).lds + $(LD) -r $(LDFLAGS) $(HEAD_OBJ) $(OBJS) $(LDARCHLIB) -o $@ + +$(OBJ_DIR)/$(TARGET): $(OBJ_DIR)/$(TARGET)-kern.o $(APP_O) + $(LD) -r $(LDFLAGS) $(OBJ_DIR)/$(TARGET)-kern.o $(APP_O) $(LDLIBS) -o $@.o $(OBJCOPY) -w -G $(GLOBAL_PREFIX)* -G _start $@.o $@.o $(LD) $(LDFLAGS) $(LDFLAGS_FINAL) $@.o $(EXTRA_OBJS) -o $@-debug strip -s $@-debug -o $@ --=20 2.35.3 From nobody Fri May 17 11:05:37 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) client-ip=192.237.175.120; envelope-from=xen-devel-bounces@lists.xenproject.org; helo=lists.xenproject.org; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) smtp.mailfrom=xen-devel-bounces@lists.xenproject.org; dmarc=pass(p=quarantine dis=none) header.from=suse.com ARC-Seal: i=1; a=rsa-sha256; t=1700799677; cv=none; d=zohomail.com; s=zohoarc; b=m4o7EEOtz2NUc5Ak1sWpWUnJd+EJbJ3PdKfu8bjgaMx+1Vk9qeJW3B7cvdeB7tjoBhZotxPu/V+wtUqKNApHZRAT7TJ4SrYuEmFBR0fVQpaKD8IR+jsBi6jaK+LvKu9QGMNOfwZCK70KF8zP4wnlK40fAp8DrrufJHLwLQvPZ10= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1700799677; h=Content-Transfer-Encoding:Cc:Cc:Date:Date:From:From:In-Reply-To:List-Subscribe:List-Post:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:References:Sender:Subject:Subject:To:To:Message-Id:Reply-To; bh=v2bgQ6T5xs6Z0agxacE1YnKaxl+7FwNqtT3DbdGrpyQ=; b=NAwdALQMRyDa3J3eUXP+I8lvjOlucZzH2xzPoxsrxYIY4U+L6c8DjO00Mtowk4piRk1gTvZ3wqux6pFaVJRsRm24JE8fvIoHpELHuhilhhm9uLvqg8iiTAkaRHafsecs22uILIiQ/PBAC5UX9qbd0VYoNWjddgyRuHK2ZGjgfQk= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) smtp.mailfrom=xen-devel-bounces@lists.xenproject.org; dmarc=pass header.from= (p=quarantine dis=none) Return-Path: Received: from lists.xenproject.org (lists.xenproject.org [192.237.175.120]) by mx.zohomail.com with SMTPS id 1700799677079385.73404197812044; Thu, 23 Nov 2023 20:21:17 -0800 (PST) Received: from list by lists.xenproject.org with outflank-mailman.640131.997969 (Exim 4.92) (envelope-from ) id 1r6NgY-0004PO-JP; Fri, 24 Nov 2023 04:20:58 +0000 Received: by outflank-mailman (output) from mailman id 640131.997969; Fri, 24 Nov 2023 04:20:58 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1r6NgY-0004PH-GM; Fri, 24 Nov 2023 04:20:58 +0000 Received: by outflank-mailman (input) for mailman id 640131; Fri, 24 Nov 2023 04:20:56 +0000 Received: from se1-gles-sth1-in.inumbo.com ([159.253.27.254] helo=se1-gles-sth1.inumbo.com) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1r6NgW-0004N7-Cn for xen-devel@lists.xenproject.org; Fri, 24 Nov 2023 04:20:56 +0000 Received: from smtp-out1.suse.de (smtp-out1.suse.de [195.135.223.130]) by se1-gles-sth1.inumbo.com (Halon) with ESMTPS id dbe24d1f-8a80-11ee-98e2-6d05b1d4d9a1; Fri, 24 Nov 2023 05:20:54 +0100 (CET) Received: from imap2.dmz-prg2.suse.org (imap2.dmz-prg2.suse.org [10.150.64.98]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by smtp-out1.suse.de (Postfix) with ESMTPS id 89983219C6; Thu, 23 Nov 2023 15:23:12 +0000 (UTC) Received: from imap2.dmz-prg2.suse.org (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by imap2.dmz-prg2.suse.org (Postfix) with ESMTPS id A49CD13AAA; Thu, 23 Nov 2023 11:45:20 +0000 (UTC) Received: from dovecot-director2.suse.de ([2a07:de40:b281:106:10:150:64:167]) by imap2.dmz-prg2.suse.org with ESMTPSA id HM2sI1A7X2XjZQAAn2gu4w (envelope-from ); Thu, 23 Nov 2023 11:45:20 +0000 X-Outflank-Mailman: Message body and most headers restored to incoming version X-BeenThere: xen-devel@lists.xenproject.org List-Id: Xen developer discussion List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-devel-bounces@lists.xenproject.org Precedence: list Sender: "Xen-devel" X-Inumbo-ID: dbe24d1f-8a80-11ee-98e2-6d05b1d4d9a1 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=suse.com; s=susede1; t=1700752992; h=from:from:reply-to:date:date:message-id:message-id:to:to:cc:cc: mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=v2bgQ6T5xs6Z0agxacE1YnKaxl+7FwNqtT3DbdGrpyQ=; b=uskWcz0HvYeP1HogR5ZVHD71WF1fNSgA0g91Bm0DNG8zo8wDGuKGY7Hj74bByW+48d7c92 nfvaRuZfUViNKpA2onkJrvngLQBzqBit0rhmuvKh0HyeB8DAue5vtkOfklmjIP76AY2AUQ cRMqMmksynsmdgVoJk/svU+b7nHHcxM= From: Juergen Gross To: minios-devel@lists.xenproject.org, xen-devel@lists.xenproject.org Cc: samuel.thibault@ens-lyon.org, wl@xen.org, Juergen Gross Subject: [PATCH v2 2/2] Mini-OS: keep a positive list of externally visible symbols Date: Thu, 23 Nov 2023 12:45:04 +0100 Message-Id: <20231123114504.29329-3-jgross@suse.com> X-Mailer: git-send-email 2.35.3 In-Reply-To: <20231123114504.29329-1-jgross@suse.com> References: <20231123114504.29329-1-jgross@suse.com> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Authentication-Results: smtp-out1.suse.de; none X-Spam-Level: *********** X-Spam-Score: 11.36 X-Spamd-Result: default: False [11.36 / 50.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_MISSING_CHARSET(2.50)[]; MIME_GOOD(-0.10)[text/plain]; NEURAL_SPAM_SHORT(2.96)[0.987]; BROKEN_CONTENT_TYPE(1.50)[]; RCPT_COUNT_FIVE(0.00)[5]; RCVD_COUNT_THREE(0.00)[3]; DKIM_SIGNED(0.00)[suse.com:s=susede1]; NEURAL_SPAM_LONG(3.50)[1.000]; MID_CONTAINS_FROM(1.00)[]; FUZZY_BLOCKED(0.00)[rspamd.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_ALL(0.00)[]; BAYES_HAM(-0.00)[33.51%] X-Spam-Flag: NO X-ZohoMail-DKIM: pass (identity @suse.com) X-ZM-MESSAGEID: 1700799678154100001 Content-Type: text/plain; charset="utf-8" Add a mini-os.map file containing all global symbols that are allowed to be referenced by an application or library. Hide all other symbols of Mini-OS from being visible externally. Signed-off-by: Juergen Gross Reviewed-by: Samuel Thibault --- V2: - added more symbols (Samuel Thibault) - sorted symbols in each section alphabetically --- Makefile | 3 +- mini-os.map | 295 ++++++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 297 insertions(+), 1 deletion(-) create mode 100644 mini-os.map diff --git a/Makefile b/Makefile index 85c6db75..d4768110 100644 --- a/Makefile +++ b/Makefile @@ -164,8 +164,9 @@ endif $(OBJ_DIR)/arch/x86/minios-x86%.lds: arch/x86/minios-x86.lds.S $(CPP) $(ASFLAGS) -P $< -o $@ =20 -$(OBJ_DIR)/$(TARGET)-kern.o: $(OBJS) arch_lib $(OBJ_DIR)/$(TARGET_ARCH_DIR= )/minios-$(MINIOS_TARGET_ARCH).lds +$(OBJ_DIR)/$(TARGET)-kern.o: $(OBJS) arch_lib $(OBJ_DIR)/$(TARGET_ARCH_DIR= )/minios-$(MINIOS_TARGET_ARCH).lds mini-os.map $(LD) -r $(LDFLAGS) $(HEAD_OBJ) $(OBJS) $(LDARCHLIB) -o $@ + $(OBJCOPY) -w -G $(GLOBAL_PREFIX)* --keep-global-symbols=3Dmini-os.map $@= $@ =20 $(OBJ_DIR)/$(TARGET): $(OBJ_DIR)/$(TARGET)-kern.o $(APP_O) $(LD) -r $(LDFLAGS) $(OBJ_DIR)/$(TARGET)-kern.o $(APP_O) $(LDLIBS) -o $@.o diff --git a/mini-os.map b/mini-os.map new file mode 100644 index 00000000..58a3a0ee --- /dev/null +++ b/mini-os.map @@ -0,0 +1,295 @@ +# Mini-OS symbols being externally visible +# entry point +_start +# Mini-OS service functions +alloc_fd +alloc_file_type +alloc_pages +bind_pirq +bind_virq +block +clear_evtchn +console_print +create_thread +do_map_frames +event_queue +evtchn_alloc_unbound +evtchn_bind_interdomain +evtchn_get_peercontext +exit_thread +free_pages +get_domid +get_file_from_fd +gntmap_fini +gntmap_init +gntmap_map_grant_refs +gntmap_munmap +gntmap_set_max_grants +gnttabop_error +gnttab_alloc_and_grant +gnttab_grant_access +gnttab_grant_transfer +gnttab_end_transfer +gnttab_end_access +hypercall_page +ioremap +ioremap_nocache +iounmap +map_frames_ex +map_frame_rw +map_frame_virt +mask_evtchn +msleep +need_pgt +printk +schedule +stop_kernel +unbind_evtchn +unmap_frames +unmask_evtchn +wake +xencons_ring_avail +xprintk +__local_irq_restore +__local_irq_save +# libgcc +__divdi3 +__moddi3 +__qdivrem +__udivdi3 +__udivmoddi4 +__umoddi3 +# libc +accept +bind +cfmakeraw +chdir +clock_gettime +close +closedir +closelog +connect +do_exit +dup +dup2 +err +errx +execv +fcntl +ffs +ffsl +ffsll +fork +free +fstat64 +fsync +ftruncate +getegid +geteuid +getgid +gethostname +getpagesize +getpeername +getpid +getsockname +getsockopt +gettimeofday +getuid +htonl +htons +inet_aton +inet_ntoa +ioctl +isatty +kill +link +listen +lockf +lseek64 +malloc +memcmp +memcpy +memset +mkdir +mmap64 +munmap +nanosleep +nice +ntohl +ntohs +open64 +opendir +openlog +pipe +poll +posix_openpt +read +readdir +realloc +recv +recvfrom +rmdir +sbrk +scnprintf +select +select_read_flag +send +sendto +setsid +setsockopt +shutdown +sigaction +sleep +snprintf +socket +sprintf +sscanf +stat +strcat +strchr +strcmp +strcpy +strdup +strlen +strncmp +strncpy +strnlen +strrchr +strstr +strtoq +strtoul +strtouq +sysconf +syslog +tcgetattr +tcsetattr +umask +unlink +usleep +verr +verrx +vscnprintf +vsnprintf +vsprintf +vsscanf +vsyslog +vwarn +vwarnx +waitpid +warn +warnx +write +_ctype +_exit +_fini +_init +___lock_acquire +___lock_acquire_recursive +___lock_init_recursive +___lock_release +___lock_release_recursive +# 9pfront driver +init_9pfront +shutdown_9pfront +# blkfront driver +blkfront_aio +blkfront_aio_poll +blkfront_aio_push_operation +blkfront_io +blkfront_open +blkfront_queue +blkfront_sync +init_blkfront +shutdown_blkfront +# fbfront driver +fbfront_open +fbfront_receive +fbfront_resize +fbfront_update +init_fbfront +shutdown_fbfront +# kbdfront driver +init_kbdfront +kbdfront_open +kbdfront_receive +shutdown_kbdfront +# netfront driver +init_netfront +netfront_get_gateway +netfront_get_netmask +netfront_receive +netfront_tap_open +netfront_xmit +networking_set_addr +resume_netfront +shutdown_netfront +start_networking +stop_networking +suspend_netfront +# pcifront driver +init_pcifront +pcifront_conf_read +pcifront_conf_write +pcifront_disable_msi +pcifront_disable_msix +pcifront_enable_msi +pcifront_enable_msix +pcifront_op +pcifront_scan +shutdown_pcifront +# tpmback driver +init_tpmback +shutdown_tpmback +tpmback_get_opaque +tpmback_get_peercontext +tpmback_get_uuid +tpmback_num_frontends +tpmback_req +tpmback_req_any +tpmback_resp +tpmback_set_opaque +tpmback_wait_for_frontend_connect +# tpmfront driver +init_tpmfront +shutdown_tpmfront +tpmfront_cmd +tpmfront_open +tpmfront_set_locality +# tpm_tis driver +init_tpm_tis +init_tpm2_tis +tpm_tis_cmd +tpm_tis_open +tpm_tis_request_locality +# xenbus driver +xenbus_get_perms +xenbus_get_self_id +xenbus_ls +xenbus_msg_reply +xenbus_printf +xenbus_read +xenbus_read_integer +xenbus_read_uuid +xenbus_rm +xenbus_set_perms +xenbus_transaction_end +xenbus_switch_state +xenbus_transaction_start +xenbus_unwatch_path_token +xenbus_wait_for_state_change +xenbus_wait_for_value +xenbus_wait_for_watch +xenbus_wait_for_watch_return +xenbus_watch_path_token +xenbus_write +xenstore_buf +xs_daemon_open +xs_directory +xs_fileno +xs_get_domain_path +xs_read +xs_read_watch +xs_rm +xs_unwatch +xs_watch +xs_write --=20 2.35.3