Page MenuHomeFreeBSD
Differential D39453

Add a BTI sysarch
ClosedPublic
Actions

Authored by andrew on Apr 6 2023, 4:10 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Jun 29, 1:39 PM
Unknown Object (File)
Sun, Jun 29, 1:39 PM
Unknown Object (File)
Sun, Jun 29, 1:39 PM
Unknown Object (File)
Fri, Jun 27, 3:37 AM
Unknown Object (File)
Thu, Jun 26, 1:29 AM
Unknown Object (File)
Wed, Jun 25, 10:30 PM
Unknown Object (File)
Wed, Jun 25, 3:10 PM
Unknown Object (File)
Wed, Jun 25, 11:40 AM
View All Files
Subscribers
emaste
imp

Details

Reviewers
kib
markj
manu
Group Reviewers
arm64
Commits
rGc4e4a7596beb: Add a BTI sysarch
Summary

This is used to enable the guard page when an elf binary is built with
BTI instructions.

Sponsored by: Arm Ltd
Sponsored by: The FreeBSD Foundation

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 50798
Build 47689: arc lint + arc unit

Event Timeline

andrew created this revision.Apr 6 2023, 4:10 PM
Herald added a reviewer: manu. · View Herald TranscriptApr 6 2023, 4:10 PM
Herald added subscribers: emaste, imp. · View Herald Transcript
andrew requested review of this revision.Apr 6 2023, 4:10 PM
andrew added a parent revision: D39452: Support BTI in rtld.
Harbormaster completed remote builds in B50798: Diff 119950.Apr 6 2023, 4:10 PM
andrew updated this revision to Diff 129243.Oct 23 2023, 2:54 PM
  • Rebase on D42328
  • Move ARM64_GUARD_PAGE from 0 to ensure userspace intends to set it
Harbormaster completed remote builds in B54129: Diff 129243.Oct 23 2023, 2:54 PM
andrew edited parent revisions, added: D42328: arm64: Add BTI support to pmap; removed: D39452: Support BTI in rtld.Oct 23 2023, 2:57 PM
markj added a comment.Nov 2 2023, 2:43 PM

Where will BTI be documented? Perhaps bti.3 and mitigations.7?

sys/arm64/arm64/sys_machdep.c
63
89

IMO it is clearer to write this in terms of a range:

sva = trunc_page(gp_args.addr);
eva = round_page(gp_args.addr + gp_args.len);
if (sva > eva || eva > VM_MAX_USER_ADDRESS)
    return (EINVAL);
error = pmap_pti_set(pmap, sva, eva);
91

Shouldn't the pmap should be derived from td, not using pcpu? This looks strange, I don't know why PKRU does it this way.

92

pmap_bti_set() returns 0 if the executable didn't have BTI configured. Don't we want to return an error here in that case?

sys/arm64/include/sysarch.h
39

What is this constant for?

andrew updated this revision to Diff 134382.Feb 15 2024, 12:13 PM

Updates based on feedback from @markj.

Only page align the start and end address when calling pmap_bti_set to ensure we catch address space overflows

Harbormaster completed remote builds in B56043: Diff 134382.Feb 15 2024, 12:13 PM
markj accepted this revision.Feb 15 2024, 2:26 PM
markj added inline comments.
sys/arm64/arm64/sys_machdep.c
68

All of the other error cases below are handled by returning directly.

This revision is now accepted and ready to land.Feb 15 2024, 2:26 PM
Closed by commit rGc4e4a7596beb: Add a BTI sysarch (authored by andrew). · Explain WhyFeb 22 2024, 4:28 PM
This revision was automatically updated to reflect the committed changes.
andrew added a commit: rGc4e4a7596beb: Add a BTI sysarch.

Revision Contents
Changeset List

PathSize
sys/
arm64/
arm64/
53 lines
include/
7 lines

Diff 119950

View Options

sys/arm64/arm64/sys_machdep.c

Loading...
View Options

sys/arm64/include/sysarch.h

Loading...