| Message ID | 20240125062739.1339782-14-debug@rivosinc.com |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel+bounces-38020-ouuuleilei=gmail.com@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:a05:7300:2553:b0:103:945f:af90 with SMTP id
p19csp1453927dyi;
Wed, 24 Jan 2024 22:33:29 -0800 (PST)
X-Google-Smtp-Source:
AGHT+IFDebPA1y8M5yMxTkec/BdPwP7ETS2C/AIH+jhyEKwWDD/K/Pt7zV7F60Q6iE6ToqGwg5Q1
X-Received: by 2002:a05:6402:b33:b0:55c:6283:3a8d with SMTP id
bo19-20020a0564020b3300b0055c62833a8dmr276838edb.54.1706164409640;
Wed, 24 Jan 2024 22:33:29 -0800 (PST)
ARC-Seal: i=2; a=rsa-sha256; t=1706164409; cv=pass;
d=google.com; s=arc-20160816;
b=n1tAqRi6XCQeaA6Qn9LbHkmKPu8HJF9wKUd91njfecIxsAZPUrQ5SwT1EuOiSC5sPN
YBVdDzZD926QQe2jpExC6sJabAuYYIRu4UfM4QJIqeq0IS/pcl37f45atCAUICmgaCec
mOp/NOuInSEufvshmaamzAg5XXxVFy9YLkEw+jUQxEv0hOpSmhBQM6rYhHXmn7P52jl+
YXpNIP8uB2uVOaLuyjfJd2reA6TDW4vGVBMfpXazzxvhRa9yUTjBIaU3YPrt+NOYXpuF
Z1OJ9pNqhqagcyZQt6/CbHdYsWFoXBMEtCm+GhVqxtoceCPxZoLG3lrDxP2OOL+kvoKs
cexg==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=content-transfer-encoding:mime-version:list-unsubscribe
:list-subscribe:list-id:precedence:references:in-reply-to:message-id
:date:subject:cc:to:from:dkim-signature;
bh=UJDL1aQMYsZ6x2hXclmWD0oGcQ0Z9qLhCUiJhXHD6LQ=;
fh=oy7V1wWqiaug32hsWRXm98kKNp5NFPTWbY7PiGr4deM=;
b=iHXTOcInnurXNCpAxucAet5qYl1/mRfge4froyZRwgNR+hVkdIUWQKPBckEsIYo8Ot
FGIZ6ZMsS7OGNZM1YsiO7BmyLN2LToIb1ELttexI3sJPphl99c1jJKZ5M6WnRtFWWI/f
y+fGyUeJox99T5WgtAAkVtCXreMKU9Q44ZI0MihXOHv4pkGeXy2ZtRdgkUbnGtZGR8/z
1MW4i13Moerx/0vAaagdo8l9Rjt7hraM2/we7ebY+H4oajBLW4k7tgTn0pke+Doi6CYW
Qc6QyYr9ZGXvsNtumUPOe9CzRatjSy+X/pZC7N9wFLaaUnon2nCObKyojeCXqce4tcN0
hMsw==
ARC-Authentication-Results: i=2; mx.google.com;
dkim=pass header.i=@rivosinc-com.20230601.gappssmtp.com
header.s=20230601 header.b=aVj46D5R;
arc=pass (i=1 spf=pass spfdomain=rivosinc.com dkim=pass
dkdomain=rivosinc-com.20230601.gappssmtp.com);
spf=pass (google.com: domain of
linux-kernel+bounces-38020-ouuuleilei=gmail.com@vger.kernel.org designates
2604:1380:4601:e00::3 as permitted sender)
smtp.mailfrom="linux-kernel+bounces-38020-ouuuleilei=gmail.com@vger.kernel.org"
Received: from am.mirrors.kernel.org (am.mirrors.kernel.org.
[2604:1380:4601:e00::3])
by mx.google.com with ESMTPS id
ek20-20020a056402371400b0055a6c4c9794si6440618edb.283.2024.01.24.22.33.29
for <ouuuleilei@gmail.com>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Wed, 24 Jan 2024 22:33:29 -0800 (PST)
Received-SPF: pass (google.com: domain of
linux-kernel+bounces-38020-ouuuleilei=gmail.com@vger.kernel.org designates
2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3;
Authentication-Results: mx.google.com;
dkim=pass header.i=@rivosinc-com.20230601.gappssmtp.com
header.s=20230601 header.b=aVj46D5R;
arc=pass (i=1 spf=pass spfdomain=rivosinc.com dkim=pass
dkdomain=rivosinc-com.20230601.gappssmtp.com);
spf=pass (google.com: domain of
linux-kernel+bounces-38020-ouuuleilei=gmail.com@vger.kernel.org designates
2604:1380:4601:e00::3 as permitted sender)
smtp.mailfrom="linux-kernel+bounces-38020-ouuuleilei=gmail.com@vger.kernel.org"
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org
[52.25.139.140])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by am.mirrors.kernel.org (Postfix) with ESMTPS id 1AA211F23529
for <ouuuleilei@gmail.com>; Thu, 25 Jan 2024 06:33:29 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
by smtp.subspace.kernel.org (Postfix) with ESMTP id 34B3C12B89;
Thu, 25 Jan 2024 06:29:52 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
dkim=pass (2048-bit key) header.d=rivosinc-com.20230601.gappssmtp.com
header.i=@rivosinc-com.20230601.gappssmtp.com header.b="aVj46D5R"
Received: from mail-ot1-f44.google.com (mail-ot1-f44.google.com
[209.85.210.44])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by smtp.subspace.kernel.org (Postfix) with ESMTPS id AC9FB1B598
for <linux-kernel@vger.kernel.org>; Thu, 25 Jan 2024 06:29:46 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
arc=none smtp.client-ip=209.85.210.44
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
t=1706164189; cv=none;
b=dGAw58lPeSXvyeBzF799WuMoeKEZlkmyasjuYnTgDcIUO8OZzQtQept9crmRp15/Mef+W8y4Gj/zYjo4xI5qfPF2LDaf6gGBbdUfBtXu5yPjaSbgCq/hWxyCiKk6Xf838zBXTIaQK/HDMR+NAqa5rDif7w3Ntgz6GYehOwEvVkc=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
s=arc-20240116; t=1706164189; c=relaxed/simple;
bh=FfixUI8MC2ZdNJqvCMVXTVMx4oe56WGSabRF6Z+s82s=;
h=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References:
MIME-Version;
b=rypvXzkp4L0dj4kFnROB3mVHf+sG0GxndlBMNIrOz0VGBr09IuDtCXRCR9j3YkvR4x36AtpdR8qEuxWG9LTwgINnVKMxsIW60seYRBu2wiB1TOxvputXZj5o6fnM1eONKXNThJPn3wtLkLW2DtQeLdMt1llCYHQtdUBcUYYYbg4=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
dmarc=none (p=none dis=none) header.from=rivosinc.com;
spf=pass smtp.mailfrom=rivosinc.com;
dkim=pass (2048-bit key) header.d=rivosinc-com.20230601.gappssmtp.com
header.i=@rivosinc-com.20230601.gappssmtp.com header.b=aVj46D5R;
arc=none smtp.client-ip=209.85.210.44
Authentication-Results: smtp.subspace.kernel.org;
dmarc=none (p=none dis=none) header.from=rivosinc.com
Authentication-Results: smtp.subspace.kernel.org;
spf=pass smtp.mailfrom=rivosinc.com
Received: by mail-ot1-f44.google.com with SMTP id
46e09a7af769-6ddf05b1922so4801802a34.2
for <linux-kernel@vger.kernel.org>;
Wed, 24 Jan 2024 22:29:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=rivosinc-com.20230601.gappssmtp.com; s=20230601; t=1706164186;
x=1706768986; darn=vger.kernel.org;
h=content-transfer-encoding:mime-version:references:in-reply-to
:message-id:date:subject:cc:to:from:from:to:cc:subject:date
:message-id:reply-to;
bh=UJDL1aQMYsZ6x2hXclmWD0oGcQ0Z9qLhCUiJhXHD6LQ=;
b=aVj46D5RxVrVjR6RkdwcyF93dUnlFCCCM4bjHRulvxeGq/b62JJUWS7rXMfZmePhXi
v6ezGtjr5ABIOkgFSgcrkjlU/FxTWXBJSd74Rln4S/mjsr2ihtF0rT/Qfl/zGl467zLu
wkSzzFvbtd/ifxDYZ2/yxiz6V2NFkhqGcfAOwijHhFcy/iR1TGka4E+7WKhTzhYW9TzM
y8W4Sv07726xWApwoCjRsxTVFFssMRecn9dNNsAM8dt/Nn2VRzu1IQW8z1RLS8tM1EVz
rc2ZGL/xVQm9UoLmcE+v8Bo3worpzy1TKj9pHsmVMLb6DOSsL7Rv6/v9My9ai0dWpGZO
kIVg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1706164186; x=1706768986;
h=content-transfer-encoding:mime-version:references:in-reply-to
:message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
:subject:date:message-id:reply-to;
bh=UJDL1aQMYsZ6x2hXclmWD0oGcQ0Z9qLhCUiJhXHD6LQ=;
b=r8PhFNb/zUPXnyyYERyWL3TvKO62OnylZbauGSNbkqlygUaw4jDrZy/wgtXtNixhHc
+RRiF8Kw5jDmJYv2j4FKKlCGgIkW7PUoZM1Cso11CBB0SLvOFQk+eTCFmk7WnBHXNtM9
aREaQPsi5dxNte7LDYNONrdbCHTAkpGQy1MR6V6Yp6iCu9vOzxid7GCFzF1xBxnjPa1I
0oiVBUlRTwI2i6pJcNuye8gVcapItM3TGjT8Gjs1qhlQcYDjoMOw/BJ+sN/aXKfY3UID
pxEvHV62qBIbWXoBxVvO/bwnh4YEeJ9cqCgXty6kJO6cFDkNs9jlefyeDxPHNsI0t4wC
8WSQ==
X-Gm-Message-State: AOJu0YxfCgk9uQPQeJbS0hNI32eER78q7m/Z1PzRttaPAEZbe2sd+ma6
sI9zGTbhodfC4pff0S7xc/ySUhBWOBIfTSzU+FWWLy6Az4PONtMqtcm7KM1picY=
X-Received: by 2002:a05:6358:6f17:b0:173:33e:ec22 with SMTP id
r23-20020a0563586f1700b00173033eec22mr487238rwn.22.1706164185725;
Wed, 24 Jan 2024 22:29:45 -0800 (PST)
Received: from debug.ba.rivosinc.com ([64.71.180.162])
by smtp.gmail.com with ESMTPSA id
t19-20020a056a00139300b006dd870b51b8sm3201139pfg.126.2024.01.24.22.29.42
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Wed, 24 Jan 2024 22:29:45 -0800 (PST)
From: debug@rivosinc.com
To: rick.p.edgecombe@intel.com,
broonie@kernel.org,
Szabolcs.Nagy@arm.com,
kito.cheng@sifive.com,
keescook@chromium.org,
ajones@ventanamicro.com,
paul.walmsley@sifive.com,
palmer@dabbelt.com,
conor.dooley@microchip.com,
cleger@rivosinc.com,
atishp@atishpatra.org,
alex@ghiti.fr,
bjorn@rivosinc.com,
alexghiti@rivosinc.com
Cc: corbet@lwn.net,
aou@eecs.berkeley.edu,
oleg@redhat.com,
akpm@linux-foundation.org,
arnd@arndb.de,
ebiederm@xmission.com,
shuah@kernel.org,
brauner@kernel.org,
debug@rivosinc.com,
guoren@kernel.org,
samitolvanen@google.com,
evan@rivosinc.com,
xiao.w.wang@intel.com,
apatel@ventanamicro.com,
mchitale@ventanamicro.com,
waylingii@gmail.com,
greentime.hu@sifive.com,
heiko@sntech.de,
jszhang@kernel.org,
shikemeng@huaweicloud.com,
david@redhat.com,
charlie@rivosinc.com,
panqinglin2020@iscas.ac.cn,
willy@infradead.org,
vincent.chen@sifive.com,
andy.chiu@sifive.com,
gerg@kernel.org,
jeeheng.sia@starfivetech.com,
mason.huo@starfivetech.com,
ancientmodern4@gmail.com,
mathis.salmen@matsal.de,
cuiyunhui@bytedance.com,
bhe@redhat.com,
chenjiahao16@huawei.com,
ruscur@russell.cc,
bgray@linux.ibm.com,
alx@kernel.org,
baruch@tkos.co.il,
zhangqing@loongson.cn,
catalin.marinas@arm.com,
revest@chromium.org,
josh@joshtriplett.org,
joey.gouly@arm.com,
shr@devkernel.io,
omosnace@redhat.com,
ojeda@kernel.org,
jhubbard@nvidia.com,
linux-doc@vger.kernel.org,
linux-riscv@lists.infradead.org,
linux-kernel@vger.kernel.org,
linux-mm@kvack.org,
linux-arch@vger.kernel.org,
linux-kselftest@vger.kernel.org
Subject: [RFC PATCH v1 13/28] riscv mmu: teach pte_mkwrite to manufacture
shadow stack PTEs
Date: Wed, 24 Jan 2024 22:21:38 -0800
Message-ID: <20240125062739.1339782-14-debug@rivosinc.com>
X-Mailer: git-send-email 2.43.0
In-Reply-To: <20240125062739.1339782-1-debug@rivosinc.com>
References: <20240125062739.1339782-1-debug@rivosinc.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-getmail-retrieved-from-mailbox: INBOX
X-GMAIL-THRID: 1789043051748204923
X-GMAIL-MSGID: 1789043051748204923
|
| Series |
riscv control-flow integrity for usermode
|
|
Commit Message
Deepak Gupta
Jan. 25, 2024, 6:21 a.m. UTC
From: Deepak Gupta <debug@rivosinc.com> pte_mkwrite creates PTEs with WRITE encodings for underlying arch. Underlying arch can have two types of writeable mappings. One that can be written using regular store instructions. Another one that can only be written using specialized store instructions (like shadow stack stores). pte_mkwrite can select write PTE encoding based on VMA range. On riscv, presence of only VM_WRITE in vma->vm_flags means it's a shadow stack. Signed-off-by: Deepak Gupta <debug@rivosinc.com> rebase with a30f0ca0fa31cdb2ac3d24b7b5be9e3ae75f4175 Implementation of pte_mkwrite and pmd_mkwrite on riscv Signed-off-by: Deepak Gupta <debug@rivosinc.com> --- arch/riscv/include/asm/pgtable.h | 7 +++++++ arch/riscv/mm/pgtable.c | 21 +++++++++++++++++++++ 2 files changed, 28 insertions(+)
diff --git a/arch/riscv/include/asm/pgtable.h b/arch/riscv/include/asm/pgtable.h index 7ed00b4cc73d..9477108e727d 100644 --- a/arch/riscv/include/asm/pgtable.h +++ b/arch/riscv/include/asm/pgtable.h @@ -403,6 +403,10 @@ static inline pte_t pte_wrprotect(pte_t pte) /* static inline pte_t pte_mkread(pte_t pte) */ +struct vm_area_struct; +pte_t pte_mkwrite(pte_t pte, struct vm_area_struct *vma); +#define pte_mkwrite pte_mkwrite + static inline pte_t pte_mkwrite_novma(pte_t pte) { return __pte(pte_val(pte) | _PAGE_WRITE); @@ -706,6 +710,9 @@ static inline pmd_t pmd_mkyoung(pmd_t pmd) return pte_pmd(pte_mkyoung(pmd_pte(pmd))); } +pmd_t pmd_mkwrite(pmd_t pmd, struct vm_area_struct *vma); +#define pmd_mkwrite pmd_mkwrite + static inline pmd_t pmd_mkwrite_novma(pmd_t pmd) { return pte_pmd(pte_mkwrite_novma(pmd_pte(pmd))); diff --git a/arch/riscv/mm/pgtable.c b/arch/riscv/mm/pgtable.c index fef4e7328e49..9b1845f93ea1 100644 --- a/arch/riscv/mm/pgtable.c +++ b/arch/riscv/mm/pgtable.c @@ -101,3 +101,24 @@ pmd_t pmdp_collapse_flush(struct vm_area_struct *vma, return pmd; } #endif /* CONFIG_TRANSPARENT_HUGEPAGE */ + +pte_t pte_mkwrite(pte_t pte, struct vm_area_struct *vma) +{ + if (arch_is_shadow_stack(vma->vm_flags)) + return pte_mkwrite_shstk(pte); + + pte = pte_mkwrite_novma(pte); + + return pte; +} + +pmd_t pmd_mkwrite(pmd_t pmd, struct vm_area_struct *vma) +{ + if (arch_is_shadow_stack(vma->vm_flags)) + return pmd_mkwrite_shstk(pmd); + + pmd = pmd_mkwrite_novma(pmd); + + return pmd; +} +