[bug #50420] EFI version loads executable code as EfiLoaderData

bug-grub

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug #50420] EFI version loads executable code as EfiLoaderData

From:	Leif Lindholm
Subject:	[bug #50420] EFI version loads executable code as EfiLoaderData
Date:	Tue, 28 Feb 2017 07:18:54 -0500 (EST)
User-agent:	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.87 Safari/537.36

URL:
  <http://savannah.gnu.org/bugs/?50420>

                 Summary: EFI version loads executable code as EfiLoaderData
                 Project: GNU GRUB
            Submitted by: leiflindholm
            Submitted on: Tue 28 Feb 2017 12:18:53 PM UTC
                Category: None
                Severity: Ordinary
                Priority: 5 - Normal
              Item Group: None
                  Status: None
                 Privacy: Public
             Assigned to: None
         Originator Name: Ard Biesheuvel
        Originator Email: address@hidden
             Open/Closed: Open
         Discussion Lock: Any
                 Release: 
                 Release: 2.02~rc1
         Reproducibility: Every Time
         Planned Release: None

    _______________________________________________________

Details:

When executing GRUB/aarch64 on recent EDK2 UEFI builds that enable a newly
introduced memory protection feature that results in only memory regions of
types EfiBootServicesCode, EfiRuntimeServicesCode and EfiLoaderCode being
mapped executable, a crash like the following may occur:

  FSOpen: Open '\EFI\fedora\grubaa64.efi' Success

  Synchronous Exception at 0x00000001380F7400
  
    X0 0x000000013A6EEA98   X1 0x000000013BFF0018   X2 0x00000001380F7400   X3
0x00000000000FD000
    X4 0x0000000000000000   X5 0x0000000000000000   X6 0x0000000138362AF4   X7
0x0000000000000000
    X8 0x000000013C01F548   X9 0x0000000200000000  X10 0x00000001380F6000  X11
0x00000001382F3FFF
   X12 0x0000000000000000  X13 0x0000000000000008  X14 0x0000000000000000  X15
0x0000000000000000
   X16 0x000000013EC6ABD0  X17 0x0000000000000000  X18 0x0000000000000000  X19
0x0000000138CDB698
   X20 0x000000013A746E18  X21 0x0000000000000000  X22 0x0000000000000000  X23
0x0000000000000000
   X24 0x0000000000000000  X25 0x0000000000000000  X26 0x0000000000000000  X27
0x0000000000000000
   X28 0x0000000000000000   FP 0x000000013EC6AA50   LR 0x00000001382F80F8
  
   [...]
  
    SP 0x000000013EC6AA50  ELR 0x00000001380F7400  SPSR 0x60000205  FPSR
0x00000000
   ESR 0x8600000E          FAR 0x00000001380F7400
  
   ESR : EC 0x21  IL 0x1  ISS 0x0000000E
  
  Instruction abort: Permission fault, second level

This is most likely caused by GRUB attempting to execute code from a region
that
was allocated as EfiLoaderData, which appears to be the type used for all
memory
allocations performed by GRUB.

To interoperate correctly in a context such as this one, the easy fix is to
replace all EfiLoaderData allocations with EfiLoaderCode allocations. The
proper fix, however, would be to selectively use EfiLoaderCode allocations
only for bits that require executable permissions.




    _______________________________________________________

Reply to this item at:

  <http://savannah.gnu.org/bugs/?50420>

_______________________________________________
  Message sent via/by Savannah
  http://savannah.gnu.org/

[Prev in Thread]

Current Thread

[Next in Thread]

[bug #50420] EFI version loads executable code as EfiLoaderData, Leif Lindholm <=
- [bug #50420] EFI version loads executable code as EfiLoaderData, Andrei Borzenkov, 2017/02/28

Prev by Date: Re: [PATCH] squash4: fix handling of fragments and sparse files
Next by Date: [bug #50364] Can't load kernel or initd from lvm
Previous by thread: [bug #50384] Cant pick a default boot if its in a /etc/grub.d/40_custom file
Next by thread: [bug #50420] EFI version loads executable code as EfiLoaderData
Index(es):
- Date
- Thread