Page MenuHomeFreeBSD
Differential D39453

Add a BTI sysarch
ClosedPublic
Actions

Authored by andrew on Apr 6 2023, 4:10 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Mar 31, 8:49 PM
Unknown Object (File)
Feb 24 2025, 11:11 PM
Unknown Object (File)
Feb 24 2025, 2:32 PM
Unknown Object (File)
Feb 16 2025, 2:15 AM
Unknown Object (File)
Feb 10 2025, 10:33 AM
Unknown Object (File)
Feb 10 2025, 9:34 AM
Unknown Object (File)
Feb 4 2025, 11:30 AM
Unknown Object (File)
Jan 27 2025, 4:58 PM
View All 78 Files
Subscribers
emaste
imp

Details

Reviewers
kib
markj
manu
Group Reviewers
arm64
Commits
rGc4e4a7596beb: Add a BTI sysarch
Summary

This is used to enable the guard page when an elf binary is built with
BTI instructions.

Sponsored by: Arm Ltd
Sponsored by: The FreeBSD Foundation

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

andrew created this revision.Apr 6 2023, 4:10 PM
Herald added a reviewer: manu. · View Herald TranscriptApr 6 2023, 4:10 PM
Herald added subscribers: emaste, imp. · View Herald Transcript
andrew requested review of this revision.Apr 6 2023, 4:10 PM
andrew added a parent revision: D39452: Support BTI in rtld.
Harbormaster completed remote builds in B50798: Diff 119950.Apr 6 2023, 4:10 PM
andrew updated this revision to Diff 129243.Oct 23 2023, 2:54 PM
  • Rebase on D42328
  • Move ARM64_GUARD_PAGE from 0 to ensure userspace intends to set it
Harbormaster completed remote builds in B54129: Diff 129243.Oct 23 2023, 2:54 PM
andrew edited parent revisions, added: D42328: arm64: Add BTI support to pmap; removed: D39452: Support BTI in rtld.Oct 23 2023, 2:57 PM
markj added a comment.Nov 2 2023, 2:43 PM

Where will BTI be documented? Perhaps bti.3 and mitigations.7?

sys/arm64/arm64/sys_machdep.c
48
74

IMO it is clearer to write this in terms of a range:

sva = trunc_page(gp_args.addr);
eva = round_page(gp_args.addr + gp_args.len);
if (sva > eva || eva > VM_MAX_USER_ADDRESS)
    return (EINVAL);
error = pmap_pti_set(pmap, sva, eva);
76

Shouldn't the pmap should be derived from td, not using pcpu? This looks strange, I don't know why PKRU does it this way.

77

pmap_bti_set() returns 0 if the executable didn't have BTI configured. Don't we want to return an error here in that case?

sys/arm64/include/sysarch.h
42

What is this constant for?

andrew updated this revision to Diff 134382.Feb 15 2024, 12:13 PM

Updates based on feedback from @markj.

Only page align the start and end address when calling pmap_bti_set to ensure we catch address space overflows

Harbormaster completed remote builds in B56043: Diff 134382.Feb 15 2024, 12:13 PM
markj accepted this revision.Feb 15 2024, 2:26 PM
markj added inline comments.
sys/arm64/arm64/sys_machdep.c
53

All of the other error cases below are handled by returning directly.

This revision is now accepted and ready to land.Feb 15 2024, 2:26 PM
Closed by commit rGc4e4a7596beb: Add a BTI sysarch (authored by andrew). · Explain WhyFeb 22 2024, 4:28 PM
This revision was automatically updated to reflect the committed changes.
andrew added a commit: rGc4e4a7596beb: Add a BTI sysarch.

Revision Contents
Changeset List

PathSize
sys/
arm64/
arm64/
43 lines
include/
7 lines

Diff 134842

View Options

sys/arm64/arm64/sys_machdep.c

Show First 20 LinesShow All 62 Lines▼ Show 20 Lines
#define LINUX_PTRACE_GETREGS 12 #define LINUX_PTRACE_GETREGS 12
#define LINUX_PTRACE_SETREGS 13 #define LINUX_PTRACE_SETREGS 13
#define LINUX_PTRACE_GETFPREGS 14 #define LINUX_PTRACE_GETFPREGS 14
#define LINUX_PTRACE_SETFPREGS 15 #define LINUX_PTRACE_SETFPREGS 15
#define LINUX_PTRACE_ATTACH 16 #define LINUX_PTRACE_ATTACH 16
#define LINUX_PTRACE_DETACH 17 #define LINUX_PTRACE_DETACH 17
#define LINUX_PTRACE_SYSCALL 24 #define LINUX_PTRACE_SYSCALL 24
#define LINUX_PTRACE_SETOPTIONS 0x4200 #define LINUX_PTRACE_SETOPTIONS 0x4200
#define LINUX_PTRACE_GETSIGINFO 0x4202
#define LINUX_PTRACE_GETREGSET 0x4204 #define LINUX_PTRACE_GETREGSET 0x4204
#define LINUX_PTRACE_SEIZE 0x4206 #define LINUX_PTRACE_SEIZE 0x4206
#define LINUX_PTRACE_O_TRACESYSGOOD 1 #define LINUX_PTRACE_O_TRACESYSGOOD 1
#define LINUX_PTRACE_O_TRACEFORK 2 #define LINUX_PTRACE_O_TRACEFORK 2
#define LINUX_PTRACE_O_TRACEVFORK 4 #define LINUX_PTRACE_O_TRACEVFORK 4
#define LINUX_PTRACE_O_TRACECLONE 8 #define LINUX_PTRACE_O_TRACECLONE 8
#define LINUX_PTRACE_O_TRACEEXEC 16 #define LINUX_PTRACE_O_TRACEEXEC 16
▲ Show 20 LinesShow All 283 Lines▼ Show 20 Lines linux_msg(td, "PTRACE_O_TRACEEXIT not implemented; "
"returning EINVAL"); "returning EINVAL");
return (EINVAL); return (EINVAL);
} }
return (kern_ptrace(td, PT_SET_EVENT_MASK, pid, &mask, sizeof(mask))); return (kern_ptrace(td, PT_SET_EVENT_MASK, pid, &mask, sizeof(mask)));
} }
static int static int
linux_ptrace_getsiginfo(struct thread *td, pid_t pid, l_ulong data)
{
struct ptrace_lwpinfo lwpinfo;
l_siginfo_t l_siginfo;
int error, sig;
error = kern_ptrace(td, PT_LWPINFO, pid, &lwpinfo, sizeof(lwpinfo));
if (error != 0) {
linux_msg(td, "PT_LWPINFO failed with error %d", error);
return (error);
}
if ((lwpinfo.pl_flags & PL_FLAG_SI) == 0) {
error = EINVAL;
linux_msg(td, "no PL_FLAG_SI, returning %d", error);
return (error);
}
sig = bsd_to_linux_signal(lwpinfo.pl_siginfo.si_signo);
siginfo_to_lsiginfo(&lwpinfo.pl_siginfo, &l_siginfo, sig);
error = copyout(&l_siginfo, (void *)data, sizeof(l_siginfo));
return (error);
}
static int
linux_ptrace_getregs(struct thread *td, pid_t pid, void *data) linux_ptrace_getregs(struct thread *td, pid_t pid, void *data)
{ {
struct ptrace_lwpinfo lwpinfo; struct ptrace_lwpinfo lwpinfo;
struct reg b_reg; struct reg b_reg;
struct linux_pt_reg l_reg; struct linux_pt_reg l_reg;
int error; int error;
error = kern_ptrace(td, PT_GETREGS, pid, &b_reg, 0); error = kern_ptrace(td, PT_GETREGS, pid, &b_reg, 0);
▲ Show 20 LinesShow All 196 Lines▼ Show 20 Lineslinux_ptrace(struct thread *td, struct linux_ptrace_args *uap)
case LINUX_PTRACE_SYSCALL: case LINUX_PTRACE_SYSCALL:
error = map_signum(uap->data, &sig); error = map_signum(uap->data, &sig);
if (error != 0) if (error != 0)
break; break;
error = kern_ptrace(td, PT_SYSCALL, pid, (void *)1, sig); error = kern_ptrace(td, PT_SYSCALL, pid, (void *)1, sig);
break; break;
case LINUX_PTRACE_SETOPTIONS: case LINUX_PTRACE_SETOPTIONS:
error = linux_ptrace_setoptions(td, pid, uap->data); error = linux_ptrace_setoptions(td, pid, uap->data);
break;
case LINUX_PTRACE_GETSIGINFO:
error = linux_ptrace_getsiginfo(td, pid, uap->data);
break; break;
case LINUX_PTRACE_GETREGSET: case LINUX_PTRACE_GETREGSET:
error = linux_ptrace_getregset(td, pid, uap->addr, uap->data); error = linux_ptrace_getregset(td, pid, uap->addr, uap->data);
break; break;
case LINUX_PTRACE_SEIZE: case LINUX_PTRACE_SEIZE:
error = linux_ptrace_seize(td, pid, uap->addr, uap->data); error = linux_ptrace_seize(td, pid, uap->addr, uap->data);
break; break;
default: default:
linux_msg(td, "ptrace(%ld, ...) not implemented; " linux_msg(td, "ptrace(%ld, ...) not implemented; "
"returning EINVAL", uap->req); "returning EINVAL", uap->req);
error = EINVAL; error = EINVAL;
break; break;
} }
return (error); return (error);
} }
View Options

sys/arm64/include/sysarch.h

Show First 20 LinesShow All 62 Lines▼ Show 20 Lines
#define LINUX_PTRACE_GETREGS 12 #define LINUX_PTRACE_GETREGS 12
#define LINUX_PTRACE_SETREGS 13 #define LINUX_PTRACE_SETREGS 13
#define LINUX_PTRACE_GETFPREGS 14 #define LINUX_PTRACE_GETFPREGS 14
#define LINUX_PTRACE_SETFPREGS 15 #define LINUX_PTRACE_SETFPREGS 15
#define LINUX_PTRACE_ATTACH 16 #define LINUX_PTRACE_ATTACH 16
#define LINUX_PTRACE_DETACH 17 #define LINUX_PTRACE_DETACH 17
#define LINUX_PTRACE_SYSCALL 24 #define LINUX_PTRACE_SYSCALL 24
#define LINUX_PTRACE_SETOPTIONS 0x4200 #define LINUX_PTRACE_SETOPTIONS 0x4200
#define LINUX_PTRACE_GETSIGINFO 0x4202
#define LINUX_PTRACE_GETREGSET 0x4204 #define LINUX_PTRACE_GETREGSET 0x4204
#define LINUX_PTRACE_SEIZE 0x4206 #define LINUX_PTRACE_SEIZE 0x4206
#define LINUX_PTRACE_O_TRACESYSGOOD 1 #define LINUX_PTRACE_O_TRACESYSGOOD 1
#define LINUX_PTRACE_O_TRACEFORK 2 #define LINUX_PTRACE_O_TRACEFORK 2
#define LINUX_PTRACE_O_TRACEVFORK 4 #define LINUX_PTRACE_O_TRACEVFORK 4
#define LINUX_PTRACE_O_TRACECLONE 8 #define LINUX_PTRACE_O_TRACECLONE 8
#define LINUX_PTRACE_O_TRACEEXEC 16 #define LINUX_PTRACE_O_TRACEEXEC 16
▲ Show 20 LinesShow All 283 Lines▼ Show 20 Lines linux_msg(td, "PTRACE_O_TRACEEXIT not implemented; "
"returning EINVAL"); "returning EINVAL");
return (EINVAL); return (EINVAL);
} }
return (kern_ptrace(td, PT_SET_EVENT_MASK, pid, &mask, sizeof(mask))); return (kern_ptrace(td, PT_SET_EVENT_MASK, pid, &mask, sizeof(mask)));
} }
static int static int
linux_ptrace_getsiginfo(struct thread *td, pid_t pid, l_ulong data)
{
struct ptrace_lwpinfo lwpinfo;
l_siginfo_t l_siginfo;
int error, sig;
error = kern_ptrace(td, PT_LWPINFO, pid, &lwpinfo, sizeof(lwpinfo));
if (error != 0) {
linux_msg(td, "PT_LWPINFO failed with error %d", error);
return (error);
}
if ((lwpinfo.pl_flags & PL_FLAG_SI) == 0) {
error = EINVAL;
linux_msg(td, "no PL_FLAG_SI, returning %d", error);
return (error);
}
sig = bsd_to_linux_signal(lwpinfo.pl_siginfo.si_signo);
siginfo_to_lsiginfo(&lwpinfo.pl_siginfo, &l_siginfo, sig);
error = copyout(&l_siginfo, (void *)data, sizeof(l_siginfo));
return (error);
}
static int
linux_ptrace_getregs(struct thread *td, pid_t pid, void *data) linux_ptrace_getregs(struct thread *td, pid_t pid, void *data)
{ {
struct ptrace_lwpinfo lwpinfo; struct ptrace_lwpinfo lwpinfo;
struct reg b_reg; struct reg b_reg;
struct linux_pt_reg l_reg; struct linux_pt_reg l_reg;
int error; int error;
error = kern_ptrace(td, PT_GETREGS, pid, &b_reg, 0); error = kern_ptrace(td, PT_GETREGS, pid, &b_reg, 0);
▲ Show 20 LinesShow All 196 Lines▼ Show 20 Lineslinux_ptrace(struct thread *td, struct linux_ptrace_args *uap)
case LINUX_PTRACE_SYSCALL: case LINUX_PTRACE_SYSCALL:
error = map_signum(uap->data, &sig); error = map_signum(uap->data, &sig);
if (error != 0) if (error != 0)
break; break;
error = kern_ptrace(td, PT_SYSCALL, pid, (void *)1, sig); error = kern_ptrace(td, PT_SYSCALL, pid, (void *)1, sig);
break; break;
case LINUX_PTRACE_SETOPTIONS: case LINUX_PTRACE_SETOPTIONS:
error = linux_ptrace_setoptions(td, pid, uap->data); error = linux_ptrace_setoptions(td, pid, uap->data);
break;
case LINUX_PTRACE_GETSIGINFO:
error = linux_ptrace_getsiginfo(td, pid, uap->data);
break; break;
case LINUX_PTRACE_GETREGSET: case LINUX_PTRACE_GETREGSET:
error = linux_ptrace_getregset(td, pid, uap->addr, uap->data); error = linux_ptrace_getregset(td, pid, uap->addr, uap->data);
break; break;
case LINUX_PTRACE_SEIZE: case LINUX_PTRACE_SEIZE:
error = linux_ptrace_seize(td, pid, uap->addr, uap->data); error = linux_ptrace_seize(td, pid, uap->addr, uap->data);
break; break;
default: default:
linux_msg(td, "ptrace(%ld, ...) not implemented; " linux_msg(td, "ptrace(%ld, ...) not implemented; "
"returning EINVAL", uap->req); "returning EINVAL", uap->req);
error = EINVAL; error = EINVAL;
break; break;
} }
return (error); return (error);
} }