Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp1006906yba;
        Fri, 26 Apr 2019 12:23:49 -0700 (PDT)
X-Google-Smtp-Source: APXvYqzAHREUD5OqQ0pdE/0Kiu2wpCvJHFGsFKcyf6oXWGjLfRla+Do4EZJvdeEIsckOFYC5VleD
X-Received: by 2002:a17:902:42:: with SMTP id 60mr47907101pla.79.1556306628929;
        Fri, 26 Apr 2019 12:23:48 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1556306628; cv=none;
        d=google.com; s=arc-20160816;
        b=stEDx3V3PPkZ76XcLMa0tGfEwNx7K/N9tCKyx62qPedP4A7ATH2R/DOi9KhdOEtwNk
         9ml9Om1ki1DtOYMbWfauOg6GAp5n4xI8AOFRNY8vmOqaQ4zbRhDxaXWXPIP/s8ZzxX2t
         /Cy+JcYHeQEHalGh/6oTt+lZnp8JD7XBlOqgs1lGxUFWrEIyCCYmoKSBtf1QRj7bA3HU
         R9HttuY0BDwuyPZ1QashpSDKTEBsXR2/FDqRmaRAeaAIOF1rcFm8DKizI2YvgT+mfH0w
         Ftu2u2XM8TUHqLJHWeTGNRNBlm59Fz3DJncai6/DqyfFZEdbXKWiGhqgP8QbUR4Gy76O
         KEXQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:to:references:message-id
         :content-transfer-encoding:cc:date:in-reply-to:from:subject
         :mime-version:dkim-signature;
        bh=FF4FZYl2W8Jk8CR2ka+0dlxHQ668c1ySH4juVbxLjMk=;
        b=DBueOrsbJNqymvD7Mb9TLqZfGfuSxdkqlZeMrcLfXJBu4WARzsRvElNpsI/5vRAEM6
         UR2HaEHt+Gda0ADYpIBpLiQbtC/KFDUe4a+GfpEPsuMgn2Mvin5CUfsLpqPV3NEa5cmh
         FnoKDSc52vCL1W8lKXepb3bRYOsIm1XgL7lzBdE9U8ziC5EhqPna9eUmPgmAicVGWdAv
         MZjw8F/wra3eexcE4slQvZVHHD0XhWzA3kkYYNpNLGtmMqWE6ML3M1WIM8x/k5GwU8WF
         L2jH3dkOSL+e8/oYd535jSEHhl2u9hWLMvreKtD4MzBVchtCExLIyE9McQpDTT17I48r
         0LDg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=Z0BFOsdy;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id f1si811421pgi.549.2019.04.26.12.23.33;
        Fri, 26 Apr 2019 12:23:48 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=Z0BFOsdy;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726817AbfDZTWH (ORCPT <rfc822;morganleezd2003@gmail.com>
        + 99 others); Fri, 26 Apr 2019 15:22:07 -0400
Received: from mail-pf1-f196.google.com ([209.85.210.196]:44082 "EHLO
        mail-pf1-f196.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726586AbfDZTWH (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 26 Apr 2019 15:22:07 -0400
Received: by mail-pf1-f196.google.com with SMTP id y13so2162707pfm.11
        for <linux-kernel@vger.kernel.org>; Fri, 26 Apr 2019 12:22:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=amacapital-net.20150623.gappssmtp.com; s=20150623;
        h=mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=FF4FZYl2W8Jk8CR2ka+0dlxHQ668c1ySH4juVbxLjMk=;
        b=Z0BFOsdyh3vzVdhq3uBu8jppABqHKQ5H1xwSxDYoIPvtClPPC4OY2Kv7zsmndh0lv3
         QZ0suuffaCBVkzz5TmVfeyE2mIO5h4dP6jurtPLm0zjL+ZB7E9jdrzPiMDnqwLX9CPjZ
         TnLdaYUCQ3l2WMmFISDbleRhVdmCC4+RRbJ143ZrSGm8cYcWmZGAaZvrN4BIzjVDDlnv
         MvhAm+52VMUyq5yDVUgbqM81BjAnqzyetFMCh4wF6E4BOaQL6gSD6x0GxAuvjo6+uEM+
         AeI+x6XvioX0LYmHeIwpSsDXtka2TdItjaN2uKnf+NQz93XNO/zJVILy8KGjaXmXwqzC
         vB8Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=FF4FZYl2W8Jk8CR2ka+0dlxHQ668c1ySH4juVbxLjMk=;
        b=JFXeyFobPJsCQ+Ap4sVLCWbx7+MbUulhHb+iwU9NxeAXXtf9fKZe88PTxNjnvBnPEu
         /HIMb8i2NKpaZTFg3KlXTRvlFr19QMkuxNha97Jg/p4gzZsz9+aARKklEKFBFcNSo06q
         Kyc9LukyPrHpfc7NhJoQZrcYsnKZGFhcOjq0tWx4oYa4vXJKKOF2kbZL9+r6L7NPhcHW
         YsDjLplOxkG5uO5xooY35KEwMYdgZvytBDIYriarUMjhenKIMd6d+y8bw5/HGoaoW5iC
         a2k14DlZpzbjOlLC/+/RYBzZhevvWef3Pqz6R6rDBn4V1lZEkCI0ul80uLx5OJyRgqF3
         mpvw==
X-Gm-Message-State: APjAAAVMe1067hx8DaKiLnvzsDkn0QzNY4xT2+QX3w5gol8stAcyXUln
        hVoXInGj9gr0d6TIGoT81BzXrQ==
X-Received: by 2002:a63:fe0a:: with SMTP id p10mr44571075pgh.86.1556306524755;
        Fri, 26 Apr 2019 12:22:04 -0700 (PDT)
Received: from ?IPv6:2600:1010:b00d:521d:ec89:6436:4509:5564? ([2600:1010:b00d:521d:ec89:6436:4509:5564])
        by smtp.gmail.com with ESMTPSA id 71sm74497769pfs.36.2019.04.26.12.22.03
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Fri, 26 Apr 2019 12:22:03 -0700 (PDT)
Content-Type: text/plain;
        charset=utf-8
Mime-Version: 1.0 (1.0)
Subject: Re: [RFC PATCH 2/7] x86/sci: add core implementation for system call isolation
From:   Andy Lutomirski <luto@amacapital.net>
X-Mailer: iPhone Mail (16E227)
In-Reply-To: <1556304567.2833.62.camel@HansenPartnership.com>
Date:   Fri, 26 Apr 2019 12:22:01 -0700
Cc:     Dave Hansen <dave.hansen@intel.com>,
        Mike Rapoport <rppt@linux.ibm.com>,
        linux-kernel@vger.kernel.org,
        Alexandre Chartre <alexandre.chartre@oracle.com>,
        Andy Lutomirski <luto@kernel.org>,
        Borislav Petkov <bp@alien8.de>,
        Dave Hansen <dave.hansen@linux.intel.com>,
        "H. Peter Anvin" <hpa@zytor.com>, Ingo Molnar <mingo@redhat.com>,
        Jonathan Adams <jwadams@google.com>,
        Kees Cook <keescook@chromium.org>,
        Paul Turner <pjt@google.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Thomas Gleixner <tglx@linutronix.de>, linux-mm@kvack.org,
        linux-security-module@vger.kernel.org, x86@kernel.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <BFDE56E4-6763-40C2-8E8A-661A22B4C0A7@amacapital.net>
References: <1556228754-12996-1-git-send-email-rppt@linux.ibm.com> <1556228754-12996-3-git-send-email-rppt@linux.ibm.com> <627d9321-466f-c4ed-c658-6b8567648dc6@intel.com> <1556290658.2833.28.camel@HansenPartnership.com> <54090243-E4C7-4C66-8025-AFE0DF5DF337@amacapital.net> <1556291961.2833.42.camel@HansenPartnership.com> <8E695557-1CD2-431A-99CC-49A4E8247BAE@amacapital.net> <1556304567.2833.62.camel@HansenPartnership.com>
To:     James Bottomley <James.Bottomley@hansenpartnership.com>
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org



> On Apr 26, 2019, at 11:49 AM, James Bottomley <James.Bottomley@hansenpartn=
ership.com> wrote:
>=20
> On Fri, 2019-04-26 at 10:40 -0700, Andy Lutomirski wrote:
>>> On Apr 26, 2019, at 8:19 AM, James Bottomley <James.Bottomley@hanse
>>> npartnership.com> wrote:
>>>=20
>>> On Fri, 2019-04-26 at 08:07 -0700, Andy Lutomirski wrote:
>>>>> On Apr 26, 2019, at 7:57 AM, James Bottomley
>>>>> <James.Bottomley@hansenpartnership.com> wrote:
>>>>>=20
>>>>>>> On Fri, 2019-04-26 at 07:46 -0700, Dave Hansen wrote:
>>>>>>> On 4/25/19 2:45 PM, Mike Rapoport wrote:
>>>>>>> After the isolated system call finishes, the mappings
>>>>>>> created during its execution are cleared.
>>>>>>=20
>>>>>> Yikes.  I guess that stops someone from calling write() a
>>>>>> bunch of times on every filesystem using every block device
>>>>>> driver and all the DM code to get a lot of code/data faulted
>>>>>> in.  But, it also means not even long-running processes will
>>>>>> ever have a chance of behaving anything close to normally.
>>>>>>=20
>>>>>> Is this something you think can be rectified or is there
>>>>>> something fundamental that would keep SCI page tables from
>>>>>> being cached across different invocations of the same
>>>>>> syscall?
>>>>>=20
>>>>> There is some work being done to look at pre-populating the
>>>>> isolated address space with the expected execution footprint of
>>>>> the system call, yes.  It lessens the ROP gadget protection
>>>>> slightly because you might find a gadget in the pre-populated
>>>>> code, but it solves a lot of the overhead problem.
>>>>=20
>>>> I=E2=80=99m not even remotely a ROP expert, but: what stops a ROP paylo=
ad
>>>> from using all the =E2=80=9Cfault-in=E2=80=9D gadgets that exist =E2=80=
=94 any function
>>>> that can return on an error without doing to much will fault in
>>>> the whole page containing the function.
>>>=20
>>> The address space pre-population is still per syscall, so you don't
>>> get access to the code footprint of a different syscall.  So the
>>> isolated address space is created anew for every system call, it's
>>> just pre-populated with that system call's expected footprint.
>>=20
>> That=E2=80=99s not what I mean. Suppose I want to use a ROP gadget in
>> vmalloc(), but vmalloc isn=E2=80=99t in the page tables. Then first push
>> vmalloc itself into the stack. As long as RDI contains a sufficiently
>> ridiculous value, it should just return without doing anything. And
>> it can return right back into the ROP gadget, which is now available.
>=20
> Yes, it's not perfect, but stack space for a smashing attack is at a
> premium and now you need two stack frames for every gadget you chain
> instead of one so we've halved your ability to chain gadgets.
>=20
>>>> To improve this, we would want some thing that would try to check
>>>> whether the caller is actually supposed to call the callee, which
>>>> is more or less the hard part of CFI.  So can=E2=80=99t we just do CFI
>>>> and call it a day?
>>>=20
>>> By CFI you mean control flow integrity?  In theory I believe so,
>>> yes, but in practice doesn't it require a lot of semantic object
>>> information which is easy to get from higher level languages like
>>> java but a bit more difficult for plain C.
>>=20
>> Yes. As I understand it, grsecurity instruments gcc to create some
>> kind of hash of all function signatures. Then any indirect call can
>> effectively verify that it=E2=80=99s calling a function of the right type=
.
>> And every return verified a cookie.
>>=20
>> On CET CPUs, RET gets checked directly, and I don=E2=80=99t see the benef=
it
>> of SCI.
>=20
> Presumably you know something I don't but I thought CET CPUs had been
> planned for release for ages, but not actually released yet?

I don=E2=80=99t know any secrets about this, but I don=E2=80=99t think it=E2=
=80=99s released. Last I checked, it didn=E2=80=99t even have a final public=
 spec.

>=20
>>>> On top of that, a robust, maintainable implementation of this
>>>> thing seems very complicated =E2=80=94 for example, what happens if
>>>> vfree() gets called?
>>>=20
>>> Address space Local vs global object tracking is another thing on
>>> our list.  What we'd probably do is verify the global object was
>>> allowed to be freed and then hand it off safely to the main kernel
>>> address space.
>>=20
>> This seems exceedingly complicated.
>=20
> It's a research project: we're exploring what's possible so we can
> choose the techniques that give the best security improvement for the
> additional overhead.
>=20

:)=