Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description

[RFC PATCH v3 00/24] Control Flow Enforcement: Shadow Stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 08/24] mm: Introduce VM_SHSTK for shadow stack memory · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 03/24] x86/fpu/xstate: Enable XSAVES system states · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 10/24] x86/mm: Introduce _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 09/24] x86/mm: Change _PAGE_DIRTY to _PAGE_DIRTY_HW · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 02/24] x86/fpu/xstate: Change some names to separate XSAVES system and user states · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 23/24] x86/cet/shstk: Add arch_prctl functions for Shadow Stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Andy Lutomirski <luto@amacapital.net> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-08-31
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Andy Lutomirski <luto@kernel.org> · 2018-08-31
Re: [RFC PATCH v3 19/24] x86/cet/shstk: Introduce WRUSS instruction · Yu-cheng Yu <hidden> · 2018-09-14
[RFC PATCH v3 14/24] mm: Handle shadow stack page fault · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 18/24] x86/cet/shstk: User-mode shadow stack support · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 18/24] x86/cet/shstk: User-mode shadow stack support · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 18/24] x86/cet/shstk: User-mode shadow stack support · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 20/24] x86/cet/shstk: Signal handling for shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 15/24] mm: Handle THP/HugeTLB shadow stack page fault · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 07/24] x86/cet/shstk: Add Kconfig option for user-mode shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 17/24] mm: Introduce do_mmap_locked() · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 13/24] x86/mm: Shadow stack page fault error checking · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Jann Horn <jannh@google.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Peter Zijlstra <peterz@infradead.org> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Peter Zijlstra <peterz@infradead.org> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-09-14
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Andy Lutomirski <luto@amacapital.net> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Andy Lutomirski <luto@amacapital.net> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Andy Lutomirski <luto@kernel.org> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Randy Dunlap <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 12/24] x86/mm: Modify ptep_set_wrprotect and pmdp_set_wrprotect for _PAGE_DIRTY_SW · Dave Hansen <dave.hansen@linux.intel.com> · 2018-08-31
[RFC PATCH v3 11/24] drm/i915/gvt: Update _PAGE_DIRTY to _PAGE_DIRTY_BITS · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 06/24] x86/cet: Control protection exception handler · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 06/24] x86/cet: Control protection exception handler · Jann Horn <jannh@google.com> · 2018-08-31
Re: [RFC PATCH v3 06/24] x86/cet: Control protection exception handler · Yu-cheng Yu <hidden> · 2018-08-31
[RFC PATCH v3 04/24] x86/fpu/xstate: Add XSAVES system states for shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 05/24] Documentation/x86: Add CET description · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Pavel Machek <hidden> · 2018-08-30
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Yu-cheng Yu <hidden> · 2018-09-14
Re: [RFC PATCH v3 05/24] Documentation/x86: Add CET description · Randy Dunlap <hidden> · 2018-09-03
[RFC PATCH v3 24/24] x86/cet/shstk: Add Shadow Stack instructions to opcode map · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 16/24] mm: Update can_follow_write_pte/pmd for shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 01/24] x86/cpufeatures: Add CPUIDs for Control-flow Enforcement Technology (CET) · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 22/24] x86/cet/shstk: Handle thread shadow stack · Yu-cheng Yu <hidden> · 2018-08-30
[RFC PATCH v3 21/24] x86/cet/shstk: ELF header parsing of Shadow Stack · Yu-cheng Yu <hidden> · 2018-08-30
Re: [RFC PATCH v3 00/24] Control Flow Enforcement: Shadow Stack · Balbir Singh <bsingharora@gmail.com> · 2018-09-02
Re: [RFC PATCH v3 00/24] Control Flow Enforcement: Shadow Stack · Yu-cheng Yu <hidden> · 2018-09-04

From: Yu-cheng Yu <hidden>
Date: 2018-08-30 22:54:18
Also in: linux-api, linux-arch, linux-mm, lkml

On Thu, 2018-08-30 at 22:39 +0200, Pavel Machek wrote:

Hi!

quoted

diff --git a/Documentation/admin-guide/kernel-parameters.txt

b/Documentation/admin-guide/kernel-parameters.txt
index 9871e649ffef..b090787188b4 100644

--- a/Documentation/admin-guide/kernel-parameters.txt
+++ b/Documentation/admin-guide/kernel-parameters.txt

@@ -2764,6 +2764,12 @@

 			noexec=on: enable non-executable mappings
(default)
 			noexec=off: disable non-executable
mappings
 
+	no_cet_ibt	[X86-64] Disable indirect branch
tracking for user-mode
+			applications
+
+	no_cet_shstk	[X86-64] Disable shadow stack support
for user-mode
+			applications

Hmm, not too consistent with "nosmap" below. Would it make sense to
have cet=on/off/ibt/shstk instead?

quoted

+++ b/Documentation/x86/intel_cet.rst

@@ -0,0 +1,252 @@
+=========================================
+Control Flow Enforcement Technology (CET)
+=========================================
+
+[1] Overview
+============
+
+Control Flow Enforcement Technology (CET) provides protection

against
+return/jump-oriented programing (ROP) attacks.

Can you add something like "It attempts to protect process from
running arbitrary code even after attacker has control of its stack"
-- for people that don't know what ROP is, and perhaps link to
wikipedia explaining ROP or something...

quoted

It can be implemented
+to protect both the kernel and applications.  In the first phase,
+only the user-mode protection is implemented for the 64-bit
kernel.
+Thirty-two bit applications are supported under the compatibility

32-bit (for consistency).

Ok, so CET stops execution of malicious code before architectural
effects are visible, correct? Does it prevent micro-architectural
effects of the malicious code? (cache content would be one example;
see Spectre).

quoted

+[3] Application Enabling
+========================

"Enabling CET in applications" ?

quoted

+Signal
+------
+
+The main program and its signal handlers use the same
SHSTK.  Because
+the SHSTK stores only return addresses, we can estimate a large
+enough SHSTK to cover the condition that both the program stack
and
+the sigaltstack run out.

English? Is it estimate or is it large enough? "a large" -- "a"
should
be deleted AFAICT.

I will work on these, thanks!

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help