[RFC PATCH v3 15/24] mm: Handle THP/HugeTLB shadow stack page fault

[RFC PATCH v3 00/24] Control Flow Enforcement: Shadow Stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 08/24] mm: Introduce VM_SHSTK for shadow stack memory · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 03/24] x86/fpu/xstate: Enable XSAVES system states · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 10/24] x86/mm: Introduce _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 09/24] x86/mm: Change _PAGE_DIRTY to _PAGE_DIRTY_HW · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 02/24] x86/fpu/xstate: Change some names to separate XSAVES system and user states · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 23/24] x86/cet/shstk: Add arch_prctl functions for Shadow Stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Andy Lutomirski <luto@amacapital.net> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-08-31
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Andy Lutomirski <luto@kernel.org> · 2018-08-31
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-09-14
[RFC PATCH v3 14/24] mm: Handle shadow stack page fault · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 18/24] x86/cet/shstk: User-mode shadow stack support · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 18/24] x86/cet/shstk: User-mode shadow stack support · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 18/24] x86/cet/shstk: User-mode shadow stack support · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 20/24] x86/cet/shstk: Signal handling for shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 15/24] mm: Handle THP/HugeTLB shadow stack page fault · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 07/24] x86/cet/shstk: Add Kconfig option for user-mode shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 17/24] mm: Introduce do_mmap_locked() · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 13/24] x86/mm: Shadow stack page fault error checking · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Peter Zijlstra <peterz@infradead.org> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Peter Zijlstra <peterz@infradead.org> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Andy Lutomirski <luto@amacapital.net> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Andy Lutomirski <luto@amacapital.net> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Andy Lutomirski <luto@kernel.org> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Randy Dunlap <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
[RFC PATCH v3 11/24] drm/i915/gvt: Update _PAGE_DIRTY to _PAGE_DIRTY_BITS · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 06/24] x86/cet: Control protection exception handler · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 06/24] x86/cet: Control protection exception handler · Jann Horn <jannh@google.com> · 2018-08-31
Re: [RFC PATCH v3 06/24] x86/cet: Control protection exception handler · Yu-cheng Yu <hidden> · 2018-08-31
[RFC PATCH v3 04/24] x86/fpu/xstate: Add XSAVES system states for shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 05/24] Documentation/x86: Add CET description · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Pavel Machek <hidden> · 2018-08-30
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Yu-cheng Yu <hidden> · 2018-09-14
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Randy Dunlap <hidden> · 2018-09-03
[RFC PATCH v3 24/24] x86/cet/shstk: Add Shadow Stack instructions to opcode map · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 16/24] mm: Update can_follow_write_pte/pmd for shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 01/24] x86/cpufeatures: Add CPUIDs for Control-flow Enforcement Technology (CET) · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 22/24] x86/cet/shstk: Handle thread shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 21/24] x86/cet/shstk: ELF header parsing of Shadow Stack · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 00/24] Control Flow Enforcement: Shadow Stack · Balbir Singh <bsingharora@gmail.com> · 2018-09-02
Re: [RFC PATCH v3 00/24] Control Flow Enforcement: Shadow Stack · Yu-cheng Yu <hidden> · 2018-09-04

From: Yu-cheng Yu <hidden>
Date: 2018-08-30 14:45:48
Also in: linux-api, linux-arch, linux-mm, lkml
Subsystem: generic include/asm header files, memory management, memory management - thp (transparent huge page), the rest, x86 architecture (32-bit and 64-bit), x86 mm · Maintainers: Arnd Bergmann, Andrew Morton, David Hildenbrand, Lorenzo Stoakes, Linus Torvalds, Thomas Gleixner, Ingo Molnar, Borislav Petkov, Dave Hansen, Andy Lutomirski, Peter Zijlstra

This patch implements THP shadow stack memory copying in the same
way as the previous patch for regular PTE.

In copy_huge_pmd(), we clear the dirty bit from the PMD.  On the
next shadow stack access to the PMD, a page fault occurs.  At
that time, the page is copied/re-used and the PMD is fixed.

Signed-off-by: Yu-cheng Yu <redacted>
---
 arch/x86/mm/pgtable.c         | 8 ++++++++
 include/asm-generic/pgtable.h | 6 ++++++
 mm/huge_memory.c              | 4 ++++
 3 files changed, 18 insertions(+)

diff --git a/arch/x86/mm/pgtable.c b/arch/x86/mm/pgtable.c
index c63261128ac3..0ab38bfbedfc 100644
--- a/arch/x86/mm/pgtable.c
+++ b/arch/x86/mm/pgtable.c

@@ -881,4 +881,12 @@ inline pte_t pte_set_vma_features(pte_t pte, struct vm_area_struct *vma)
 	else
 		return pte;
 }
+
+inline pmd_t pmd_set_vma_features(pmd_t pmd, struct vm_area_struct *vma)
+{
+	if (vma->vm_flags & VM_SHSTK)
+		return pmd_mkdirty_shstk(pmd);
+	else
+		return pmd;
+}
 #endif /* CONFIG_X86_INTEL_SHADOW_STACK_USER */

diff --git a/include/asm-generic/pgtable.h b/include/asm-generic/pgtable.h
index 558a485617cd..0f25186cd38d 100644
--- a/include/asm-generic/pgtable.h
+++ b/include/asm-generic/pgtable.h

@@ -1151,8 +1151,14 @@ static inline pte_t pte_set_vma_features(pte_t pte, struct vm_area_struct *vma)
 {
 	return pte;
 }
+
+static inline pmd_t pmd_set_vma_features(pmd_t pmd, struct vm_area_struct *vma)
+{
+	return pmd;
+}
 #else
 pte_t pte_set_vma_features(pte_t pte, struct vm_area_struct *vma);
+pmd_t pmd_set_vma_features(pmd_t pmd, struct vm_area_struct *vma);
 #endif
 
 #endif /* _ASM_GENERIC_PGTABLE_H */

diff --git a/mm/huge_memory.c b/mm/huge_memory.c
index c3bc7e9c9a2a..5b4c8f2fb85e 100644
--- a/mm/huge_memory.c
+++ b/mm/huge_memory.c

@@ -597,6 +597,7 @@ static vm_fault_t __do_huge_pmd_anonymous_page(struct vm_fault *vmf,
 
 		entry = mk_huge_pmd(page, vma->vm_page_prot);
 		entry = maybe_pmd_mkwrite(pmd_mkdirty(entry), vma);
+		entry = pmd_set_vma_features(entry, vma);
 		page_add_new_anon_rmap(page, vma, haddr, true);
 		mem_cgroup_commit_charge(page, memcg, false, true);
 		lru_cache_add_active_or_unevictable(page, vma);

@@ -1194,6 +1195,7 @@ static vm_fault_t do_huge_pmd_wp_page_fallback(struct vm_fault *vmf,
 		pte_t entry;
 		entry = mk_pte(pages[i], vma->vm_page_prot);
 		entry = maybe_mkwrite(pte_mkdirty(entry), vma);
+		entry = pte_set_vma_features(entry, vma);
 		memcg = (void *)page_private(pages[i]);
 		set_page_private(pages[i], 0);
 		page_add_new_anon_rmap(pages[i], vmf->vma, haddr, false);

@@ -1278,6 +1280,7 @@ vm_fault_t do_huge_pmd_wp_page(struct vm_fault *vmf, pmd_t orig_pmd)
 		pmd_t entry;
 		entry = pmd_mkyoung(orig_pmd);
 		entry = maybe_pmd_mkwrite(pmd_mkdirty(entry), vma);
+		entry = pmd_set_vma_features(entry, vma);
 		if (pmdp_set_access_flags(vma, haddr, vmf->pmd, entry,  1))
 			update_mmu_cache_pmd(vma, vmf->address, vmf->pmd);
 		ret |= VM_FAULT_WRITE;

@@ -1349,6 +1352,7 @@ vm_fault_t do_huge_pmd_wp_page(struct vm_fault *vmf, pmd_t orig_pmd)
 		pmd_t entry;
 		entry = mk_huge_pmd(new_page, vma->vm_page_prot);
 		entry = maybe_pmd_mkwrite(pmd_mkdirty(entry), vma);
+		entry = pmd_set_vma_features(entry, vma);
 		pmdp_huge_clear_flush_notify(vma, haddr, vmf->pmd);
 		page_add_new_anon_rmap(new_page, vma, haddr, true);
 		mem_cgroup_commit_charge(new_page, memcg, false, true);

-- 
2.17.1

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help