Received: by 2002:a25:ab43:0:0:0:0:0 with SMTP id u61csp3410283ybi; Mon, 10 Jun 2019 09:47:32 -0700 (PDT) X-Google-Smtp-Source: APXvYqzeFpej3IOA75lSi93msinNdml41qvHUUj/Mr01Ujnn5tVZD3Sr5rUQOU5umQBFk9xnwDaT X-Received: by 2002:a17:902:583:: with SMTP id f3mr8631417plf.137.1560185252070; Mon, 10 Jun 2019 09:47:32 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1560185252; cv=none; d=google.com; s=arc-20160816; b=lTWmXbhAE2jRdtnLd1ji9kx85ki/Zm1ylhjvMnmcz7I8jCDPCR12JzcWwZ6sGvHyxb rTBeXvRyqoIbZeOuaoJWGFyKLiyIaBS2qfqHEbsWHcXp36C3nO5Eo3/kgI/P0LVzwGr4 NbDXZR4nq4UbWaejSLH0qqBc1e2UgCNiUYwNNFgZbGNCEL43Eq2WVcDdfnQhi8ZACGzP f9UQ0k0VJ01Xuf+ni3HW+kSqXpPYp7cDaiIzdhuepiRvRpa+Nva7mqqNI5BseXlodkhs TrjyGA0jbaXRLbx0EG/h2tR5IhskdJaBGyIkmXgHgi71U0AKRv3jF2v+xhFGqzYZiuQZ BygA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date; bh=E5R6KV45U+My+Bw5zdtHmrqB5E/ndWG+JF+6JaYDrTs=; b=XWZ1Xs7bbdiOMO3xd11SYgp0BNlh0WUm59XZZPw2z/zI93b1Kswbx7+TMiNIiakPP9 5lTzVCqCxN3FFY8/PFts6rpEGSvZVNWlH0YTGWH8K6rTzKddjtSIPfrna4yvd5WA/wqU 7EcZFMoNUTU2eYV3/U55+ywo7z2ZnzD1D/R1qWZLoPE68DVXfOxXB/gpIm0huPX5CSTN kGavtmlkyM0k/G5QZ43pLskA11vgQvlWg/E71rzYw5xo1paU0aZtEJMrCLTMeDa4jf4d jvdgWIAFrl0oZSuXYq5/udizwaFMHfxecMUqjSNW3gVJg6Y98QnuOSn1Eh0679rKq1oN 9gAA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id n5si7649506plk.423.2019.06.10.09.47.17; Mon, 10 Jun 2019 09:47:32 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728183AbfFJQqw (ORCPT + 99 others); Mon, 10 Jun 2019 12:46:52 -0400 Received: from mga11.intel.com ([192.55.52.93]:45688 "EHLO mga11.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726217AbfFJQqw (ORCPT ); Mon, 10 Jun 2019 12:46:52 -0400 X-Amp-Result: UNKNOWN X-Amp-Original-Verdict: FILE UNKNOWN X-Amp-File-Uploaded: False Received: from fmsmga002.fm.intel.com ([10.253.24.26]) by fmsmga102.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 10 Jun 2019 09:46:51 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.63,575,1557212400"; d="scan'208";a="183489250" Received: from sjchrist-coffee.jf.intel.com (HELO linux.intel.com) ([10.54.74.36]) by fmsmga002.fm.intel.com with ESMTP; 10 Jun 2019 09:46:50 -0700 Date: Mon, 10 Jun 2019 09:46:50 -0700 From: Sean Christopherson To: Stephen Smalley Cc: Jarkko Sakkinen , Andy Lutomirski , Cedric Xing , James Morris , "Serge E . Hallyn" , LSM List , Paul Moore , Eric Paris , selinux@vger.kernel.org, Jethro Beekman , Dave Hansen , Thomas Gleixner , Linus Torvalds , LKML , X86 ML , linux-sgx@vger.kernel.org, Andrew Morton , nhorman@redhat.com, npmccallum@redhat.com, Serge Ayoun , Shay Katz-zamir , Haitao Huang , Andy Shevchenko , Kai Svahn , Borislav Petkov , Josh Triplett , Kai Huang , David Rientjes , William Roberts , Philip Tricca Subject: Re: [RFC PATCH v2 5/5] security/selinux: Add enclave_load() implementation Message-ID: <20190610164650.GE15995@linux.intel.com> References: <20190606021145.12604-1-sean.j.christopherson@intel.com> <20190606021145.12604-6-sean.j.christopherson@intel.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.24 (2015-08-30) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Jun 07, 2019 at 05:16:01PM -0400, Stephen Smalley wrote: > On 6/5/19 10:11 PM, Sean Christopherson wrote: > >The goal of selinux_enclave_load() is to provide a facsimile of the > >existing selinux_file_mprotect() and file_map_prot_check() policies, > >but tailored to the unique properties of SGX. > > > >For example, an enclave page is technically backed by a MAP_SHARED file, > >but the "file" is essentially shared memory that is never persisted > >anywhere and also requires execute permissions (for some pages). > > > >The basic concept is to require appropriate execute permissions on the > >source of the enclave for pages that are requesting PROT_EXEC, e.g. if > >an enclave page is being loaded from a regular file, require > >FILE__EXECUTE and/or FILE__EXECMOND, and if it's coming from an > >anonymous/private mapping, require PROCESS__EXECMEM since the process > >is essentially executing from the mapping, albeit in a roundabout way. > > > >Note, FILE__READ and FILE__WRITE are intentionally not required even if > >the source page is backed by a regular file. Writes to the enclave page > >are contained to the EPC, i.e. never hit the original file, and read > >permissions have already been vetted (or the VMA doesn't have PROT_READ, > >in which case loading the page into the enclave will fail). > > > >Signed-off-by: Sean Christopherson > >--- > > security/selinux/hooks.c | 69 ++++++++++++++++++++++++++++++++++++++++ > > 1 file changed, 69 insertions(+) > > > >diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c > >index 3ec702cf46ca..3c5418edf51c 100644 > >--- a/security/selinux/hooks.c > >+++ b/security/selinux/hooks.c > >@@ -6726,6 +6726,71 @@ static void selinux_bpf_prog_free(struct bpf_prog_aux *aux) > > } > > #endif > >+#ifdef CONFIG_INTEL_SGX > >+int selinux_enclave_load(struct vm_area_struct *vma, unsigned long prot) > >+{ > >+ const struct cred *cred = current_cred(); > >+ u32 sid = cred_sid(cred); > >+ int ret; > >+ > >+ /* SGX is supported only in 64-bit kernels. */ > >+ WARN_ON_ONCE(!default_noexec); > >+ > >+ /* Only executable enclave pages are restricted in any way. */ > >+ if (!(prot & PROT_EXEC)) > >+ return 0; > > prot/PROT_EXEC or vmflags/VM_EXEC > > >+ > >+ /* > >+ * The source page is exectuable, i.e. has already passed SELinux's > > executable > > >+ * checks, and userspace is not requesting RW->RX capabilities. > > Is it requesting W->X or WX? Hmm, good point. I'll reword the "requesting RW->RX" and "RW->RX intent" phrases to make it clear that we don't actually know whether userspace intends to do W->X or WX, and I'll also expand the "Note, this hybrid EXECMOD and EXECMEM behavior" comment to explain that existing checks won't prevent WX. > >+ */ > >+ if ((vma->vm_flags & VM_EXEC) && !(prot & PROT_WRITE)) > >+ return 0; > >+ > >+ /* > >+ * The source page is not executable, or userspace is requesting the > >+ * ability to do a RW->RX conversion. Permissions are required as > >+ * follows, in order of increasing privelege: > >+ * > >+ * EXECUTE - Load an executable enclave page without RW->RX intent from > >+ * a non-executable vma that is backed by a shared mapping to > >+ * a regular file that has not undergone COW. > > Shared mapping or unmodified private file mapping Doh, messed that up. Thanks! > >+ * > >+ * EXECMOD - Load an executable enclave page without RW->RX intent from > >+ * a non-executable vma that is backed by a shared mapping to > >+ * a regular file that *has* undergone COW. > > modified private file mapping (write to shared mapping won't trigger COW; it > would have been checked by FILE__WRITE earlier) Same mental error. Will fix. > >+ * > >+ * - Load an enclave page *with* RW->RX intent from a shared > >+ * mapping to a regular file. > >+ * > >+ * EXECMEM - Load an exectuable enclave page from an anonymous mapping. > > executable > > >+ * > >+ * - Load an exectuable enclave page from a private file, e.g. > > executable At least I'm consistent. > >+ * from a shared mapping to a hugetlbfs file. > >+ * > >+ * - Load an enclave page *with* RW->RX intent from a private > > W->X or WX? > > >+ * mapping to a regular file. > >+ * > >+ * Note, this hybrid EXECMOD and EXECMEM behavior is intentional and > >+ * reflects the nature of enclaves and the EPC, e.g. EPC is effectively > >+ * a non-persistent shared file, but each enclave is a private domain > >+ * within that shared file, so delegate to the source of the enclave. > >+ */ > >+ if (vma->vm_file && !IS_PRIVATE(file_inode(vma->vm_file) && > >+ ((vma->vm_flags & VM_SHARED) || !(prot & PROT_WRITE)))) { > >+ if (!vma->anon_vma && !(prot & PROT_WRITE)) > >+ ret = file_has_perm(cred, vma->vm_file, FILE__EXECUTE); > >+ else > >+ ret = file_has_perm(cred, vma->vm_file, FILE__EXECMOD); > >+ } else { > >+ ret = avc_has_perm(&selinux_state, > >+ sid, sid, SECCLASS_PROCESS, > >+ PROCESS__EXECMEM, NULL); > >+ } > >+ return ret; > >+} > >+#endif > >+ > > struct lsm_blob_sizes selinux_blob_sizes __lsm_ro_after_init = { > > .lbs_cred = sizeof(struct task_security_struct), > > .lbs_file = sizeof(struct file_security_struct), > >@@ -6968,6 +7033,10 @@ static struct security_hook_list selinux_hooks[] __lsm_ro_after_init = { > > LSM_HOOK_INIT(bpf_map_free_security, selinux_bpf_map_free), > > LSM_HOOK_INIT(bpf_prog_free_security, selinux_bpf_prog_free), > > #endif > >+ > >+#ifdef CONFIG_INTEL_SGX > >+ LSM_HOOK_INIT(enclave_load, selinux_enclave_load), > >+#endif > > }; > > static __init int selinux_init(void) > > >