Received: by 2002:a25:31c3:0:0:0:0:0 with SMTP id x186csp733869ybx; Fri, 1 Nov 2019 10:21:18 -0700 (PDT) X-Google-Smtp-Source: APXvYqwsuuQ4ZhX+uJO/VrHjVWPAYNvaglMncGbf81WN8AV9uYtYmZQ0imD75SGXzvgi3dj/NvlS X-Received: by 2002:a05:600c:2295:: with SMTP id 21mr10536073wmf.85.1572628878457; Fri, 01 Nov 2019 10:21:18 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1572628878; cv=none; d=google.com; s=arc-20160816; b=LUeUSbobcM2xOYtYefYpPJ3QCF46BLqqP8fOM8WDQ0fMnYjG/ydt2r/cPlgX3Kc7MM uZ585wH65+1diD66RnG2rufQ8GXYTYKtqigBcmg34zBo1aq8VD46sQrSWR/ve6EASE+I aI6pgrIGEmU8Ki2lcuDi5vU0soiPaZpchwURiRltXMPiX3QPnBjRCF/oe2YBanlex8kr 2Z5ITUrwfZKQeT+oFkLZj9BjKwOXx25aiC2imGnLDBIQtcjTMC/14Kr+C+EahUBzC2Q6 mmnVryIUR9Quz4Kzqb7V6jJeIQxuphk+oHaR2RyCxZB7Zovou8t/qvgelZDMxJmvoJ6B HcJA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=cugJW9F3kTAr1l84/vLpT5yr86XijpMcBnCXxXWK4UA=; b=cMrtiS1MVLk9JB+sztrB65X+FSiO0m82frxpqLz7+Jnz/AHzDFfi1atGTbR47yQj4F Z1pbYQ9d5283HZ0SMOiRgQIEIvShQcrlLYazUlWgbhMdRd2vnnsXpYJMYUoenE0UaliU M49TQrH7wlaq8NDAa+V9PTaJx6vUYhRLSCvG2x9SmE2iugFdECh8jMUWsOPoYA8tmVMM sFAeEjtRGKnQgx/9WNewKKJwn9IIzhU7ITClCjBoE2IhGBjpVIl8zaJipeVWf0/+M9d/ SIUGoKO4BuJefGrHPF7GJlVcTV1C+CNPOqvbHtT6Cmqn6clkWQpgsi7K5dGR1clflrBH M+PA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=ai3N6Ic4; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id n1si1009635eda.359.2019.11.01.10.20.54; Fri, 01 Nov 2019 10:21:18 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=ai3N6Ic4; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728748AbfKAQ2g (ORCPT + 99 others); Fri, 1 Nov 2019 12:28:36 -0400 Received: from mail-ua1-f65.google.com ([209.85.222.65]:33810 "EHLO mail-ua1-f65.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726701AbfKAQ2f (ORCPT ); Fri, 1 Nov 2019 12:28:35 -0400 Received: by mail-ua1-f65.google.com with SMTP id q16so3093806uao.1 for ; Fri, 01 Nov 2019 09:28:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=cugJW9F3kTAr1l84/vLpT5yr86XijpMcBnCXxXWK4UA=; b=ai3N6Ic4RRGuSAsXlls5IzMaslA5Wbr/HVntf4UgHRgBb1znSgpSqTQDhgWkXAk5oM H0TMkU5NqeJqmaviuucs+F/wv2mYGbxw4p/TlWjmTA7nxtnYoIewy1UZepA7s1zvqFi+ J0gxVuzM5VGToU0Rd8Mze3tyCLh7RZ7qRdkeI4u+x2bACiJuZjdPOS6PF5wclT402Cyl E4V47Z+G3JNyTOeTMcNM9nltwL7iNcdGY46YKNmZkjxzRh51T0x1vup1917ckL2zPFgG WhafP3q/o/Aolmq4VvLO1/E0Za4fVCa/z+d1jFfQQJXZNS7+zE2mjM1J0A4RaF2Z5bp3 En0Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=cugJW9F3kTAr1l84/vLpT5yr86XijpMcBnCXxXWK4UA=; b=R0SPez6SqALJIX5Kho1egOJ8evo2hDwV5ApaPn9jm+g2o//vgPCl6/8WKul4M0xW+R 6SpdBxh6vy25XKIfuCibjsXhSX2O+/ZDYiW1cyn4cYwzH9sCMpMpZrTYsPi41/abr+FN vRICmcqGuFAEN5m/oOcdZOnzdSZNG/mvMuxnjiV5TtmUI4R/4M/fMAlPatP6mkpJyo6l Lz5GB62ISlL4msudC8O7MOsEjMzDVDihy7adoRVlxtiVv8KMp6OY7IwQSIvuvqoW8txP /JDEgQp1bnTXHGy0sMDXvQo2gusQspAPJBCne8PopoB5+VuQzwcu01KUgOoHjtTEiH+Z 2AMQ== X-Gm-Message-State: APjAAAVDIluvrwKLsZN/nCpdrsaspvfgT+PWUa7rwg2kyv+Tbu4eVQzy DPPMNf8GlYth7ukX7iH9CO7eXp4eUORnopIATPtfFg== X-Received: by 2002:ab0:2381:: with SMTP id b1mr5975220uan.106.1572625713398; Fri, 01 Nov 2019 09:28:33 -0700 (PDT) MIME-Version: 1.0 References: <20191018161033.261971-1-samitolvanen@google.com> <20191031164637.48901-1-samitolvanen@google.com> <20191031164637.48901-6-samitolvanen@google.com> <201910312050.C538F8F3@keescook> In-Reply-To: <201910312050.C538F8F3@keescook> From: Sami Tolvanen Date: Fri, 1 Nov 2019 09:28:21 -0700 Message-ID: Subject: Re: [PATCH v3 05/17] add support for Clang's Shadow Call Stack (SCS) To: Kees Cook Cc: Will Deacon , Catalin Marinas , Steven Rostedt , Masami Hiramatsu , Ard Biesheuvel , Dave Martin , Laura Abbott , Mark Rutland , Nick Desaulniers , Jann Horn , Miguel Ojeda , Masahiro Yamada , clang-built-linux , Kernel Hardening , linux-arm-kernel , LKML Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Oct 31, 2019 at 8:51 PM Kees Cook wrote: > > +/* A random number to mark the end of the shadow stack. */ > > +#define SCS_END_MAGIC 0xaf0194819b1635f6UL > > Is 0xaf.... non-canonical for arm64? While "random", it should also > likely be an "impossible" value to find on the call stack. Agreed, and yes, this is non-canonical for arm64 and AFAIK all 64-bit architectures the kernel supports. I'll add a note about it. Sami