Re: [PATCH v3 03/17] mm: add generic __va_function and __pa_function macros

[PATCH v3 00/17] Add support for Clang CFI · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 03/17] mm: add generic __va_function and __pa_function macros · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 03/17] mm: add generic __va_function and __pa_function macros · Christoph Hellwig <hch@infradead.org> · 2021-03-24
Re: [PATCH v3 03/17] mm: add generic __va_function and __pa_function macros · Sami Tolvanen <samitolvanen@google.com> · 2021-03-24
Re: [PATCH v3 03/17] mm: add generic __va_function and __pa_function macros · Mark Rutland <mark.rutland@arm.com> · 2021-03-25
Re: [PATCH v3 03/17] mm: add generic __va_function and __pa_function macros · Sami Tolvanen <samitolvanen@google.com> · 2021-03-25
[PATCH v3 02/17] cfi: add __cficanonical · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 02/17] cfi: add __cficanonical · Rasmus Villemoes <linux@rasmusvillemoes.dk> · 2021-03-24
Re: [PATCH v3 02/17] cfi: add __cficanonical · Sami Tolvanen <samitolvanen@google.com> · 2021-03-24
[PATCH v3 01/17] add support for Clang CFI · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 04/17] module: ensure __cfi_check alignment · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 04/17] module: ensure __cfi_check alignment · Kees Cook <hidden> · 2021-03-26
Re: [PATCH v3 04/17] module: ensure __cfi_check alignment · Jessica Yu <jeyu@kernel.org> · 2021-03-29
[PATCH v3 06/17] kthread: use WARN_ON_FUNCTION_MISMATCH · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 06/17] kthread: use WARN_ON_FUNCTION_MISMATCH · Kees Cook <hidden> · 2021-03-26
[PATCH v3 07/17] kallsyms: strip ThinLTO hashes from static functions · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 05/17] workqueue: use WARN_ON_FUNCTION_MISMATCH · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 05/17] workqueue: use WARN_ON_FUNCTION_MISMATCH · Kees Cook <hidden> · 2021-03-26
[PATCH v3 08/17] bpf: disable CFI in dispatcher functions · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 09/17] treewide: Change list_sort to use const pointers · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 09/17] treewide: Change list_sort to use const pointers · Nick Desaulniers <hidden> · 2021-03-23
Re: [PATCH v3 09/17] treewide: Change list_sort to use const pointers · Christoph Hellwig <hch@infradead.org> · 2021-03-24
Re: [PATCH v3 09/17] treewide: Change list_sort to use const pointers · Kees Cook <hidden> · 2021-03-26
[PATCH v3 10/17] lkdtm: use __va_function · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 11/17] psci: use __pa_function for cpu_resume · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 11/17] psci: use __pa_function for cpu_resume · Mark Rutland <mark.rutland@arm.com> · 2021-03-25
[PATCH v3 12/17] arm64: implement __va_function · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
Re: [PATCH v3 12/17] arm64: implement __va_function · Mark Rutland <mark.rutland@arm.com> · 2021-03-25
Re: [PATCH v3 12/17] arm64: implement __va_function · Sami Tolvanen <samitolvanen@google.com> · 2021-03-25
Re: [PATCH v3 12/17] arm64: implement __va_function · Peter Collingbourne <hidden> · 2021-03-26
[PATCH v3 13/17] arm64: use __pa_function · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 14/17] arm64: add __nocfi to functions that jump to a physical address · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 17/17] arm64: allow CONFIG_CFI_CLANG to be selected · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 16/17] KVM: arm64: Disable CFI for nVHE · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23
[PATCH v3 15/17] arm64: add __nocfi to __apply_alternatives · Sami Tolvanen <samitolvanen@google.com> · 2021-03-23

From: Sami Tolvanen <samitolvanen@google.com>
Date: 2021-03-24 15:55:11
Also in: bpf, linux-arm-kernel, linux-hardening, linux-kbuild, linux-pci, lkml

On Wed, Mar 24, 2021 at 12:14 AM Christoph Hellwig [off-list ref] wrote:

On Tue, Mar 23, 2021 at 01:39:32PM -0700, Sami Tolvanen wrote:

quoted

With CONFIG_CFI_CLANG, the compiler replaces function addresses
in instrumented C code with jump table addresses. This means that
__pa_symbol(function) returns the physical address of the jump table
entry instead of the actual function, which may not work as the jump
table code will immediately jump to a virtual address that may not be
mapped.

To avoid this address space confusion, this change adds generic
definitions for __va_function and __pa_function, which architectures
that support CFI can override. The typical implementation of the
__va_function macro would use inline assembly to take the function
address, which avoids compiler instrumentation.

I think these helper are sensible, but shouldn't they have somewhat
less arcane names and proper documentation?

Good point, I'll add comments in the next version. I thought
__pa_function would be a fairly straightforward replacement for
__pa_symbol, but I'm fine with renaming these. Any suggestions for
less arcane names?

Sami

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help