Re: [PATCH v2 07/39] x86/cet: Add user control-protection fault handler

From: Edgecombe, Rick P
Date: Mon Oct 03 2022 - 14:12:38 EST

Next message: Tejun Heo: "[GIT PULL] cgroup changes for v6.1-rc1"
Previous message: Kees Cook: "Re: [PATCH v2 13/39] mm: Move VM_UFFD_MINOR_BIT from 37 to 38"
In reply to: Kirill A . Shutemov: "Re: [PATCH v2 07/39] x86/cet: Add user control-protection fault handler"
Next in thread: Kees Cook: "Re: [PATCH v2 07/39] x86/cet: Add user control-protection fault handler"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2022-10-03 at 17:01 +0300, Kirill A . Shutemov wrote:
> On Thu, Sep 29, 2022 at 03:29:04PM -0700, Rick Edgecombe wrote:
> > +#else
> > +static void do_user_control_protection_fault(struct pt_regs *regs,
> > + unsigned long
> > error_code)
> > +{
> > + WARN_ONCE(1, "User-mode control protection fault with shadow
> > support disabled\n");
>
> Why is this a warning, but runtime check for !X86_FEATURE_IBT and
> !X86_FEATURE_SHSTK below is fatal?

It was a BUG() in the original KERNEL_IBT focused handler IIRC. There
seems to be some renewed effort to stop doing those:

https://lore.kernel.org/all/20220923113426.52871-2-david@xxxxxxxxxx/T/#u

...so I'll change it to a WARN for this. In the kernel specific portion
of the handler, it also does a BUG on endbranch violation. I'll leave
that one for this change.

Next message: Tejun Heo: "[GIT PULL] cgroup changes for v6.1-rc1"
Previous message: Kees Cook: "Re: [PATCH v2 13/39] mm: Move VM_UFFD_MINOR_BIT from 37 to 38"
In reply to: Kirill A . Shutemov: "Re: [PATCH v2 07/39] x86/cet: Add user control-protection fault handler"
Next in thread: Kees Cook: "Re: [PATCH v2 07/39] x86/cet: Add user control-protection fault handler"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]