Received: by 2002:a25:d7c1:0:0:0:0:0 with SMTP id o184csp4025468ybg; Fri, 25 Oct 2019 12:15:31 -0700 (PDT) X-Google-Smtp-Source: APXvYqyJKbPhriftiFcsq4EeWLl93/gNsDfdELRPdgVvF0ajbZP90T1s5fGdlBTh5eYthbv7nMKf X-Received: by 2002:a17:906:1d4d:: with SMTP id o13mr442959ejh.196.1572030931188; Fri, 25 Oct 2019 12:15:31 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1572030931; cv=none; d=google.com; s=arc-20160816; b=GRGnmn/u5gGFgx1U+pETqwqGd3BKfRWpAh4u7tpncTZJVbXc8/nUZ+yy0UdKiW/uDj dMb7pDrQurOeGJZfEZio8c72522w75qGpMKtm0RP4QMWpDCmdKyLN0+ijZuFUymEZp2Z Erru4zam97EwV/djNT9gP29CQJUz635SnnCOgRc1oLjQINJ4nqqYnN4fV1/2YK4HTSNz o+hTtaGfprK7T9UUq/iUpYBM4WQguNN8kDEhrQQgnp4gciFX+2ocwWy34MmO74YcDbP5 YvhFBG5pHCDTGqkTfa3yBheM+JHVivexHBdXA/VmUX6GhANP2X0SBxgg5Qz+9Gplfpws tVrw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:from:subject:references :mime-version:message-id:in-reply-to:date:dkim-signature; bh=R+pagykxtiUayWbEADuJoiydRcDW6HSTgqXK05LN0/E=; b=d56G904y+FhCS8IASpFYEQeitxuj0Me2o3CyCs8Ei0Is/FKYk5/o1LNgbHxMaxq0W9 TH9Z3mtI31tHbfOcvCqVKO6ewl9O0Krm0A40cqvGVJOpf+NWhe86h/dRhA5VXfsGA/Ri qkfM/0sDaY5AmV/8yObQw8r8gjsieqLRJWNAynT1zyt7jQbV9Ho13cvDUUGHwg69wSko 0WQEqLdc/eHnG1w+WFeEwi1h1o2Vu73cqPlkzu9nmCkc4Nr+jyxRjoTUOgxLaReV0OGi iEJ9PqviAqBIUzDf4ounT+Poo6HLJ6X+6RtSD/OC/wxcrdtAp5DeoT7G1pd5aKqku5JP ViwA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=I2431xJR; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 5si1797388ejv.177.2019.10.25.12.15.07; Fri, 25 Oct 2019 12:15:31 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=I2431xJR; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1732478AbfJXWwR (ORCPT + 99 others); Thu, 24 Oct 2019 18:52:17 -0400 Received: from mail-yw1-f73.google.com ([209.85.161.73]:43682 "EHLO mail-yw1-f73.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1732326AbfJXWwP (ORCPT ); Thu, 24 Oct 2019 18:52:15 -0400 Received: by mail-yw1-f73.google.com with SMTP id y200so398907ywg.10 for ; Thu, 24 Oct 2019 15:52:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=date:in-reply-to:message-id:mime-version:references:subject:from:to :cc; bh=R+pagykxtiUayWbEADuJoiydRcDW6HSTgqXK05LN0/E=; b=I2431xJR5AtRuX5qoSiIk24z/5OCLlzSdjGi52dpOv12+bHMiaLVBU12PGCDes+r8X wAjuAIWuv6ZomAao/O113wncVLizdeeBSlEx1bsxh2/lzn4uD6epbHPViDUva3cOvsU0 /UNdmDsfJIMrSw5i/0SaDjUj5Es5bVAzDEP1qir0eAi1qvv8mC+P/O4o1w4HC3L6pF50 AQP27T022w3AaGsGKKMo5gVcBxRaoqeynh9ofqgqyGFYUY3HeancjS86aO6xkUTlSXJv nGykeYWoGX6nqGCK04zTzj6lvvXPcGONfsDAOADFXZa+d2m7LYp8SgIBde5lho4ylCuw NBDg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:in-reply-to:message-id:mime-version :references:subject:from:to:cc; bh=R+pagykxtiUayWbEADuJoiydRcDW6HSTgqXK05LN0/E=; b=ikr7Cb+lo3GX1tLMIDd1EGY0V1mGmYO7qsW+wnFbiusA66UHteI2ab96c1cd9NCi1h BoWq5KFKGdWu6rKEnB9MO5BCX+ritsx/jy4LXVyXSd8xa1EBqcObC5MG1hA3XQ9c0gOM rwkeCpuQKyWsF5DYm7pobRZpFBDb9XoghxDCP8+vV6ePmkoVvjVbnfknxQcmvgn34k9k fKUUovAQh9wzzRr4Flxc7AvO0pAvPSQcfTfUp70Y1EXHvoL7QPpxy30Lfo0zZeE7Kfcl 3Zp3ei4fGIJ+wdGy/4dgxH84Syt3Np660iBIKzN7Qt2WHAI1eegdBhe3V1CtwGe+bq/K c7gw== X-Gm-Message-State: APjAAAV2x6ogxah6YZcC4e+/qi4fxnfNQkV2KJ0DrY7UjGY7FonkB2K+ 2VXe8hYBdGhCNapTXNdgnjWQUUe9MSrA6x1+Bts= X-Received: by 2002:a25:cc87:: with SMTP id l129mr704884ybf.48.1571957534881; Thu, 24 Oct 2019 15:52:14 -0700 (PDT) Date: Thu, 24 Oct 2019 15:51:25 -0700 In-Reply-To: <20191024225132.13410-1-samitolvanen@google.com> Message-Id: <20191024225132.13410-11-samitolvanen@google.com> Mime-Version: 1.0 References: <20191018161033.261971-1-samitolvanen@google.com> <20191024225132.13410-1-samitolvanen@google.com> X-Mailer: git-send-email 2.24.0.rc0.303.g954a862665-goog Subject: [PATCH v2 10/17] arm64: disable kretprobes with SCS From: samitolvanen@google.com To: Will Deacon , Catalin Marinas , Steven Rostedt , Masami Hiramatsu , Ard Biesheuvel Cc: Dave Martin , Kees Cook , Laura Abbott , Mark Rutland , Nick Desaulniers , Jann Horn , Miguel Ojeda , Masahiro Yamada , clang-built-linux@googlegroups.com, kernel-hardening@lists.openwall.com, linux-arm-kernel@lists.infradead.org, linux-kernel@vger.kernel.org, Sami Tolvanen Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org With CONFIG_KRETPROBES, function return addresses are modified to redirect control flow to kretprobe_trampoline. This is incompatible with SCS. Signed-off-by: Sami Tolvanen --- arch/arm64/Kconfig | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/arch/arm64/Kconfig b/arch/arm64/Kconfig index 8cda176dad9a..42867174920f 100644 --- a/arch/arm64/Kconfig +++ b/arch/arm64/Kconfig @@ -165,7 +165,7 @@ config ARM64 select HAVE_STACKPROTECTOR select HAVE_SYSCALL_TRACEPOINTS select HAVE_KPROBES - select HAVE_KRETPROBES + select HAVE_KRETPROBES if !SHADOW_CALL_STACK select HAVE_GENERIC_VDSO select IOMMU_DMA if IOMMU_SUPPORT select IRQ_DOMAIN -- 2.24.0.rc0.303.g954a862665-goog