From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-oi0-f72.google.com (mail-oi0-f72.google.com [209.85.218.72]) by kanga.kvack.org (Postfix) with ESMTP id 0DBA56B5356 for ; Thu, 30 Aug 2018 17:01:56 -0400 (EDT) Received: by mail-oi0-f72.google.com with SMTP id w12-v6so8630558oie.12 for ; Thu, 30 Aug 2018 14:01:56 -0700 (PDT) Received: from mail-sor-f65.google.com (mail-sor-f65.google.com. [209.85.220.65]) by mx.google.com with SMTPS id h194-v6sor7350681oib.118.2018.08.30.14.01.54 for (Google Transport Security); Thu, 30 Aug 2018 14:01:55 -0700 (PDT) MIME-Version: 1.0 References: <20180830143904.3168-1-yu-cheng.yu@intel.com> <20180830143904.3168-13-yu-cheng.yu@intel.com> <079a55f2-4654-4adf-a6ef-6e480b594a2f@linux.intel.com> <1535649960.26689.15.camel@intel.com> <33d45a12-513c-eba2-a2de-3d6b630e928e@linux.intel.com> <1535651666.27823.6.camel@intel.com> <1535660494.28258.36.camel@intel.com> <1535662366.28781.6.camel@intel.com> In-Reply-To: <1535662366.28781.6.camel@intel.com> From: Jann Horn Date: Thu, 30 Aug 2018 23:01:26 +0200 Message-ID: Subject: Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW Content-Type: text/plain; charset="UTF-8" Sender: owner-linux-mm@kvack.org List-ID: To: yu-cheng.yu@intel.com Cc: Dave Hansen , the arch/x86 maintainers , "H . Peter Anvin" , Thomas Gleixner , Ingo Molnar , kernel list , linux-doc@vger.kernel.org, Linux-MM , linux-arch , Linux API , Arnd Bergmann , Andy Lutomirski , Balbir Singh , Cyrill Gorcunov , Florian Weimer , hjl.tools@gmail.com, Jonathan Corbet , keescook@chromiun.org, Mike Kravetz , Nadav Amit , Oleg Nesterov , Pavel Machek , Peter Zijlstra , ravi.v.shankar@intel.com, vedvyas.shanbhogue@intel.com On Thu, Aug 30, 2018 at 10:57 PM Yu-cheng Yu wrote: > > On Thu, 2018-08-30 at 22:44 +0200, Jann Horn wrote: > > On Thu, Aug 30, 2018 at 10:25 PM Yu-cheng Yu > > wrote: > ... > > > In the flow you described, if C writes to the overflow page before > > > B > > > gets in with a 'call', the return address is still correct for > > > B. To > > > make an attack, C needs to write again before the TLB flush. I > > > agree > > > that is possible. > > > > > > Assume we have a guard page, can someone in the short window do > > > recursive calls in B, move ssp to the end of the guard page, and > > > trigger the same again? He can simply take the incssp route. > > I don't understand what you're saying. If the shadow stack is > > between > > guard pages, you should never be able to move SSP past that area's > > guard pages without an appropriate shadow stack token (not even with > > INCSSP, since that has a maximum range of PAGE_SIZE/2), and > > therefore, > > it shouldn't matter whether memory outside that range is incorrectly > > marked as shadow stack. Am I missing something? > > INCSSP has a range of 256, but we can do multiple of that. > But I realize the key is not to have the transient SHSTK page at all. > The guard page is !pte_write() and even we have flaws in > ptep_set_wrprotect(), there will not be any transient SHSTK pages. I > will add guard pages to both ends. > > Still thinking how to fix ptep_set_wrprotect(). cmpxchg loop? Or is that slow?