[v7,09/27] mm/mmap: Prevent Shadow Stack VMA merges

Message ID	20190606200646.3951-10-yu-cheng.yu@intel.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <owner-linux-mm@kvack.org> Received-SPF: pass (google.com: domain of yu-cheng.yu@intel.com designates 192.55.52.136 as permitted sender) client-ip=192.55.52.136; From: Yu-cheng Yu <yu-cheng.yu@intel.com> To: x86@kernel.org, "H. Peter Anvin" <hpa@zytor.com>, Thomas Gleixner <tglx@linutronix.de>, Ingo Molnar <mingo@redhat.com>, linux-kernel@vger.kernel.org, linux-doc@vger.kernel.org, linux-mm@kvack.org, linux-arch@vger.kernel.org, linux-api@vger.kernel.org, Arnd Bergmann <arnd@arndb.de>, Andy Lutomirski <luto@amacapital.net>, Balbir Singh <bsingharora@gmail.com>, Borislav Petkov <bp@alien8.de>, Cyrill Gorcunov <gorcunov@gmail.com>, Dave Hansen <dave.hansen@linux.intel.com>, Eugene Syromiatnikov <esyr@redhat.com>, Florian Weimer <fweimer@redhat.com>, "H.J. Lu" <hjl.tools@gmail.com>, Jann Horn <jannh@google.com>, Jonathan Corbet <corbet@lwn.net>, Kees Cook <keescook@chromium.org>, Mike Kravetz <mike.kravetz@oracle.com>, Nadav Amit <nadav.amit@gmail.com>, Oleg Nesterov <oleg@redhat.com>, Pavel Machek <pavel@ucw.cz>, Peter Zijlstra <peterz@infradead.org>, Randy Dunlap <rdunlap@infradead.org>, "Ravi V. Shankar" <ravi.v.shankar@intel.com>, Vedvyas Shanbhogue <vedvyas.shanbhogue@intel.com>, Dave Martin <Dave.Martin@arm.com> Cc: Yu-cheng Yu <yu-cheng.yu@intel.com> Subject: [PATCH v7 09/27] mm/mmap: Prevent Shadow Stack VMA merges Date: Thu, 6 Jun 2019 13:06:28 -0700 Message-Id: <20190606200646.3951-10-yu-cheng.yu@intel.com> In-Reply-To: <20190606200646.3951-1-yu-cheng.yu@intel.com> References: <20190606200646.3951-1-yu-cheng.yu@intel.com> Sender: owner-linux-mm@kvack.org Precedence: bulk
Series	Control-flow Enforcement: Shadow Stack \| expand [v7,00/27] Control-flow Enforcement: Shadow Stack [v7,01/27] Documentation/x86: Add CET description [v7,02/27] x86/cpufeatures: Add CET CPU feature flags for Control-flow Enforcement Technology (CET) [v7,03/27] x86/fpu/xstate: Change names to separate XSAVES system and user states [v7,04/27] x86/fpu/xstate: Introduce XSAVES system states [v7,05/27] x86/fpu/xstate: Add XSAVES system states for shadow stack [v7,06/27] x86/cet: Add control protection exception handler [v7,07/27] x86/cet/shstk: Add Kconfig option for user-mode shadow stack [v7,08/27] mm: Introduce VM_SHSTK for shadow stack memory [v7,09/27] mm/mmap: Prevent Shadow Stack VMA merges [v7,10/27] x86/mm: Change _PAGE_DIRTY to _PAGE_DIRTY_HW [v7,11/27] x86/mm: Introduce _PAGE_DIRTY_SW [v7,12/27] drm/i915/gvt: Update _PAGE_DIRTY to _PAGE_DIRTY_BITS [v7,13/27] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW [v7,14/27] x86/mm: Shadow stack page fault error checking [v7,15/27] mm: Handle shadow stack page fault [v7,16/27] mm: Handle THP/HugeTLB shadow stack page fault [v7,17/27] mm: Update can_follow_write_pte/pmd for shadow stack [v7,18/27] mm: Introduce do_mmap_locked() [v7,19/27] x86/cet/shstk: User-mode shadow stack support [v7,20/27] x86/cet/shstk: Introduce WRUSS instruction [v7,21/27] x86/cet/shstk: Handle signals for shadow stack [v7,22/27] binfmt_elf: Extract .note.gnu.property from an ELF file [v7,23/27] x86/cet/shstk: ELF header parsing of Shadow Stack [v7,24/27] x86/cet/shstk: Handle thread shadow stack [v7,25/27] mm/mmap: Add Shadow stack pages to memory accounting [v7,26/27] x86/cet/shstk: Add arch_prctl functions for Shadow Stack [v7,27/27] x86/cet/shstk: Add Shadow Stack instructions to opcode map

Message ID

20190606200646.3951-10-yu-cheng.yu@intel.com (mailing list archive)

State

New, archived

Headers

Received-SPF: pass (google.com: domain of yu-cheng.yu@intel.com designates
 192.55.52.136 as permitted sender) client-ip=192.55.52.136;
From: Yu-cheng Yu <yu-cheng.yu@intel.com>
To: x86@kernel.org,
	"H. Peter Anvin" <hpa@zytor.com>,
	Thomas Gleixner <tglx@linutronix.de>,
	Ingo Molnar <mingo@redhat.com>,
	linux-kernel@vger.kernel.org,
	linux-doc@vger.kernel.org,
	linux-mm@kvack.org,
	linux-arch@vger.kernel.org,
	linux-api@vger.kernel.org,
	Arnd Bergmann <arnd@arndb.de>,
	Andy Lutomirski <luto@amacapital.net>,
	Balbir Singh <bsingharora@gmail.com>,
	Borislav Petkov <bp@alien8.de>,
	Cyrill Gorcunov <gorcunov@gmail.com>,
	Dave Hansen <dave.hansen@linux.intel.com>,
	Eugene Syromiatnikov <esyr@redhat.com>,
	Florian Weimer <fweimer@redhat.com>,
	"H.J. Lu" <hjl.tools@gmail.com>,
	Jann Horn <jannh@google.com>,
	Jonathan Corbet <corbet@lwn.net>,
	Kees Cook <keescook@chromium.org>,
	Mike Kravetz <mike.kravetz@oracle.com>,
	Nadav Amit <nadav.amit@gmail.com>,
	Oleg Nesterov <oleg@redhat.com>,
	Pavel Machek <pavel@ucw.cz>,
	Peter Zijlstra <peterz@infradead.org>,
	Randy Dunlap <rdunlap@infradead.org>,
	"Ravi V. Shankar" <ravi.v.shankar@intel.com>,
	Vedvyas Shanbhogue <vedvyas.shanbhogue@intel.com>,
	Dave Martin <Dave.Martin@arm.com>
Cc: Yu-cheng Yu <yu-cheng.yu@intel.com>
Subject: [PATCH v7 09/27] mm/mmap: Prevent Shadow Stack VMA merges
Date: Thu,  6 Jun 2019 13:06:28 -0700
Message-Id: <20190606200646.3951-10-yu-cheng.yu@intel.com>
In-Reply-To: <20190606200646.3951-1-yu-cheng.yu@intel.com>
References: <20190606200646.3951-1-yu-cheng.yu@intel.com>
Sender: owner-linux-mm@kvack.org
Precedence: bulk

Series

Control-flow Enforcement: Shadow Stack | expand

Commit Message

Yu-cheng Yu June 6, 2019, 8:06 p.m. UTC

To prevent function call/return spills into the next shadow stack
area, do not merge shadow stack areas.

Signed-off-by: Yu-cheng Yu <yu-cheng.yu@intel.com>
---
 mm/mmap.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/mm/mmap.c b/mm/mmap.c
index 7e8c3e8ae75f..b1a921c0de63 100644
--- a/mm/mmap.c
+++ b/mm/mmap.c
@@ -1149,6 +1149,12 @@  struct vm_area_struct *vma_merge(struct mm_struct *mm,
 	if (vm_flags & VM_SPECIAL)
 		return NULL;
 
+	/*
+	 * Do not merge shadow stack areas.
+	 */
+	if (vm_flags & VM_SHSTK)
+		return NULL;
+
 	if (prev)
 		next = prev->vm_next;
 	else

[v7,09/27] mm/mmap: Prevent Shadow Stack VMA merges

Commit Message

Patch