Re: [PATCH v7 03/14] x86/cet/ibt: Add IBT legacy code bitmap setup function

From: Yu-cheng Yu
Date: Fri Jun 07 2019 - 16:18:31 EST

Next message: Linus Torvalds: "Re: [PATCH] lockref: Limit number of cmpxchg loop retries"
Previous message: Keller, Jacob E: "RE: [PATCH][next][V2] ixgbe: fix potential u32 overflow on shift"
In reply to: Dave Hansen: "Re: [PATCH v7 03/14] x86/cet/ibt: Add IBT legacy code bitmap setup function"
Next in thread: Dave Hansen: "Re: [PATCH v7 03/14] x86/cet/ibt: Add IBT legacy code bitmap setup function"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2019-06-07 at 13:00 -0700, Dave Hansen wrote:
> On 6/7/19 12:49 PM, Yu-cheng Yu wrote:
> > >
> > > This also gives us an excellent opportunity to make it read-only as seen
> > > from
> > > userspace to prevent exploits from just poking it full of ones before
> > > redirecting execution.
> >
> > GLIBC sets bits only for legacy code, and then makes the bitmap read-
> > only. That
> > avoids most issues:
> >
> > To populate bitmap pages, mprotect() is required.
> > Reading zero bitmap pages would not waste more physical memory, right?
>
> Huh, how does glibc know about all possible past and future legacy code
> in the application?

When dlopen() gets a legacy binary and the policy allows that, it will manage
the bitmap:

If a bitmap has not been created, create one.
Set bits for the legacy code being loaded.

Yu-cheng

Next message: Linus Torvalds: "Re: [PATCH] lockref: Limit number of cmpxchg loop retries"
Previous message: Keller, Jacob E: "RE: [PATCH][next][V2] ixgbe: fix potential u32 overflow on shift"
In reply to: Dave Hansen: "Re: [PATCH v7 03/14] x86/cet/ibt: Add IBT legacy code bitmap setup function"
Next in thread: Dave Hansen: "Re: [PATCH v7 03/14] x86/cet/ibt: Add IBT legacy code bitmap setup function"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]