Received: by 2002:ac0:8c9a:0:0:0:0:0 with SMTP id r26csp13829ima; Thu, 31 Jan 2019 11:34:42 -0800 (PST) X-Google-Smtp-Source: ALg8bN4WTj2nY5siEs0gZLxv5/tuQo9dClQJSsIxYQkJDMifwZxYMHWb+eIjyDzLB4V63hMli7BX X-Received: by 2002:a63:d047:: with SMTP id s7mr32454727pgi.311.1548963282419; Thu, 31 Jan 2019 11:34:42 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1548963282; cv=none; d=google.com; s=arc-20160816; b=rVqrnz9zDAR2RZAvDt+xzd+g8PFNVFZyYY9gkqfuZssJX9EfzYtrXFMCfgP4wMWt9c l1YhC2vJcfmHeHrA/AoynEhqHM4rujBLm38N/+fiZmgm89Zirh5srUo7uXJJHIWF+0dr PA+6mw8R8Je9/CwzkwiNjB4U07P14e8gZ+35YZBDVqhMs4wPFNq9iTQovdj5cesqP0wO Ri2NFaDjWv4tOBz97q7qrmohLni3dJepNt/2rxKlg/P7r0l25GbX/kZdcxKWibUXv2aD cW88VdHD5lIvxDtOpOX82I4BUQ20SHTfG7MlNMDkObfvv2IiVbhxMPSvbv6k9TKcEsvt 66ZQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=+msRGHiW9AVXafKQg9tGuz9CnhI1ID7nH2oXzVzjU0I=; b=O3bqQQv9QU8kqUhyF5aP9itS4I5a0JmJS/gCWsF15jfneWZA13dg+oebCFJTB3ULaY 23ANfJkrmxHuLUh3GzB8GKvwFtO6R8a3McHRDbDR95qpSR+lJFW9VbgPAIVSYe3N/3cp 0tKMC9JhoOk6gN8S5/GcauzF6OELCA4gUxK7aZEpv/H+g//sD52/u4yIHNleAS6LkFFf t/KizAZhr7JucfiPqu8CyvDUw/dDtiNjH1GVGPeuMQkzZPmn2LAt08eiXIPBvnuJtaJP 4c9eoCJSrl5Tt+wSRC+sycg4DD5h35E2X6Qrtlb7agN6f5uoSkVO4uonuzBCXSQLMIsq Xa8g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=bqhNakyu; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 13si5057995pld.398.2019.01.31.11.34.27; Thu, 31 Jan 2019 11:34:42 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=bqhNakyu; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729218AbfAaT21 (ORCPT + 99 others); Thu, 31 Jan 2019 14:28:27 -0500 Received: from mail-pg1-f196.google.com ([209.85.215.196]:37983 "EHLO mail-pg1-f196.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729199AbfAaT20 (ORCPT ); Thu, 31 Jan 2019 14:28:26 -0500 Received: by mail-pg1-f196.google.com with SMTP id g189so1781241pgc.5 for ; Thu, 31 Jan 2019 11:28:26 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=from:to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; bh=+msRGHiW9AVXafKQg9tGuz9CnhI1ID7nH2oXzVzjU0I=; b=bqhNakyuO33LAFGgG6cqMeLXPDxKIHzip1hRQIYu50cK9Ue5B/Y15EmxWLlDAefokB NfjO8ESlMhhYe5IURjGUPSJMGGHVwBxNPfev2NUcQ6JMrv3k3301WjaiiIdzGCrd7Y1d XAQw4slXPL95B5LGQf8xZZzTVLFshkZErhaD0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=+msRGHiW9AVXafKQg9tGuz9CnhI1ID7nH2oXzVzjU0I=; b=dnWccIqcLkOB93KKUY9rGYu5c+uRStYX1KIw05wKIXu8TP8Yq7f7KVU08CEXg2A/OF tOfitJYiO4hdAJ4tUGHno8LfsOn2khHvagedh8pxYGZV6jzq5bY5MJO5F2QzqAsjam+6 D5A8pNoj6iSJTvBzF9aTVTt1SEWpYcMOGtPab7apKqaqllziphk0biXlGkES5v5df1wD LIuVJ5B4fg0B5J4VJ31MWawmTZRKSRbbwcXeHWOWZBJ+LAMahkxHiEoPj2IaaSACwj2z wk52JqcnI3hoaz+6eJE7sio19fi0JiEcWvn246bMvvPvgZRfDMFbFatAz509xL6tOsaO KWGA== X-Gm-Message-State: AJcUukeZ2R5fLSTiAAq7cnjZIH8QX3t07c2wnU/ujQtKuTXadfhZrxsS usZcYCoVfGlgDDJua1KtvZD6iA== X-Received: by 2002:a63:2744:: with SMTP id n65mr32490610pgn.65.1548962906138; Thu, 31 Jan 2019 11:28:26 -0800 (PST) Received: from skynet.sea.corp.google.com ([2620:15c:17:4:29de:3bb1:1270:e679]) by smtp.gmail.com with ESMTPSA id s130sm11164399pgc.60.2019.01.31.11.28.25 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 31 Jan 2019 11:28:25 -0800 (PST) From: Thomas Garnier To: kernel-hardening@lists.openwall.com Cc: kristen@linux.intel.com, Thomas Garnier , Thomas Gleixner , Ingo Molnar , Borislav Petkov , "H. Peter Anvin" , x86@kernel.org, Andrew Morton , Thomas Garnier , linux-kernel@vger.kernel.org Subject: [PATCH v6 07/27] x86/CPU: Adapt assembly for PIE support Date: Thu, 31 Jan 2019 11:24:14 -0800 Message-Id: <20190131192533.34130-8-thgarnie@chromium.org> X-Mailer: git-send-email 2.20.1.495.gaa96b0ce6b-goog In-Reply-To: <20190131192533.34130-1-thgarnie@chromium.org> References: <20190131192533.34130-1-thgarnie@chromium.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Change the assembly code to use only relative references of symbols for the kernel to be PIE compatible. Use the new _ASM_MOVABS macro instead of the 'mov $symbol, %dst' construct. Position Independent Executable (PIE) support will allow to extend the KASLR randomization range below 0xffffffff80000000. Signed-off-by: Thomas Garnier --- arch/x86/include/asm/processor.h | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/arch/x86/include/asm/processor.h b/arch/x86/include/asm/processor.h index 33051436c864..ce9851bf6778 100644 --- a/arch/x86/include/asm/processor.h +++ b/arch/x86/include/asm/processor.h @@ -723,11 +723,13 @@ static inline void sync_core(void) "pushfq\n\t" "mov %%cs, %0\n\t" "pushq %q0\n\t" - "pushq $1f\n\t" + "movabsq $1f, %q0\n\t" + "pushq %q0\n\t" "iretq\n\t" UNWIND_HINT_RESTORE "1:" - : "=&r" (tmp), ASM_CALL_CONSTRAINT : : "cc", "memory"); + : "=&r" (tmp), ASM_CALL_CONSTRAINT + : : "cc", "memory"); #endif } -- 2.20.1.495.gaa96b0ce6b-goog