| From: |
| Amit Daniel Kachhap <amit.kachhap-AT-arm.com> |
| To: |
| linux-arm-kernel-AT-lists.infradead.org |
| Subject: |
| [PATCH 00/11] arm64: return address signing |
| Date: |
| Thu, 17 Oct 2019 13:44:14 +0530 |
| Message-ID: |
| <1571300065-10236-1-git-send-email-amit.kachhap@arm.com> |
| Cc: |
| Mark Rutland <mark.rutland-AT-arm.com>, Kees Cook <keescook-AT-chromium.org>, Suzuki K Poulose <suzuki.poulose-AT-arm.com>, Catalin Marinas <catalin.marinas-AT-arm.com>, Ard Biesheuvel <ard.biesheuvel-AT-linaro.org>, Will Deacon <will.deacon-AT-arm.com>, Kristina Martsenko <kristina.martsenko-AT-arm.com>, James Morse <james.morse-AT-arm.com>, Ramana Radhakrishnan <ramana.radhakrishnan-AT-arm.com>, Amit Daniel Kachhap <amit.kachhap-AT-arm.com>, Vincenzo Frascino <Vincenzo.Frascino-AT-arm.com>, Dave Martin <Dave.Martin-AT-arm.com> |
| Archive-link: |
| Article |
Hi,
This series improves function return address protection for the arm64 kernel, by
compiling the kernel with ARMv8.3 Pointer Authentication instructions (ptrauth
referred hereafter). This should help protect the kernel against attacks using
return-oriented programming.
Patch 9 and 10 are newly added and hence sent as RFC.
This series is based on v5.4-rc2.
High-level changes since RFC v2 [1] (detailed changes are listed in patches):
- Moved enabling, key setup and context switch to assembly, to avoid using
the pointer auth compiler attribute which Clang does not support (thanks
Suzuki for the initial code!).
- Added code to restore keys after cpu resume.
- __builtin_return_address will now mask pac bits.
- Changed gcc compiler options to add ptrauth instructions in all functions
and not just non-leaf functions. This may be revisited later due to
performance concerns.
- Rebased onto v5.4-rc2.
- Added Reviewed-by's.
This series do not implement few things or have known limitations:
- ftrace function tracer does not work with this series. But after using
the posted series [2] based on -fpatchable-function-entry, it works fine.
- kprobes/uprobes and other tracing may need some rework with ptrauth.
- kdump, other debug may need some rework with ptrauth.
- Generate some randomness for ptrauth keys during kernel early booting.
Feedback welcome!
Thanks,
Amit Daniel
[1] https://lore.kernel.org/linux-arm-kernel/20190529190332.2...
[2] https://patchwork.kernel.org/patch/10803279/
Amit Daniel Kachhap (3):
arm64: create macro to park cpu in infinite loop
arm64: suspend: restore the kernel ptrauth keys
arm64: mask PAC bits of __builtin_return_address
Kristina Martsenko (8):
arm64: cpufeature: add pointer auth meta-capabilities
arm64: install user ptrauth keys at kernel exit time
arm64: cpufeature: handle conflicts based on capability
arm64: enable ptrauth earlier
arm64: rename ptrauth key structures to be user-specific
arm64: initialize and switch ptrauth kernel keys
arm64: unwind: strip PAC from kernel addresses
arm64: compile the kernel with ptrauth return address signing
arch/arm64/Kconfig | 21 ++++++++-
arch/arm64/Makefile | 6 +++
arch/arm64/include/asm/asm_pointer_auth.h | 59 +++++++++++++++++++++++
arch/arm64/include/asm/compiler.h | 15 ++++++
arch/arm64/include/asm/cpucaps.h | 4 +-
arch/arm64/include/asm/cpufeature.h | 33 ++++++++++---
arch/arm64/include/asm/pointer_auth.h | 50 ++++++++------------
arch/arm64/include/asm/processor.h | 3 +-
arch/arm64/include/asm/smp.h | 3 ++
arch/arm64/kernel/asm-offsets.c | 15 ++++++
arch/arm64/kernel/cpufeature.c | 53 ++++++++++++---------
arch/arm64/kernel/entry.S | 6 +++
arch/arm64/kernel/head.S | 78 +++++++++++++++++++++++++++----
arch/arm64/kernel/pointer_auth.c | 7 +--
arch/arm64/kernel/process.c | 3 +-
arch/arm64/kernel/ptrace.c | 16 +++----
arch/arm64/kernel/sleep.S | 6 +++
arch/arm64/kernel/smp.c | 8 ++++
arch/arm64/kernel/stacktrace.c | 3 ++
19 files changed, 306 insertions(+), 83 deletions(-)
create mode 100644 arch/arm64/include/asm/asm_pointer_auth.h
create mode 100644 arch/arm64/include/asm/compiler.h
--
2.7.4
_______________________________________________
linux-arm-kernel mailing list
linux-arm-kernel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-arm-kernel
