Received: by 2002:a05:6a10:22f:0:0:0:0 with SMTP id 15csp603612pxk; Wed, 2 Sep 2020 09:50:55 -0700 (PDT) X-Google-Smtp-Source: ABdhPJyiP8XYroyq+KzLGl7zDFftH0mebATW5aLkNWYtTea3Ie1scR4HXJXaL7wtTgAxZ87vL0qX X-Received: by 2002:a17:906:9712:: with SMTP id k18mr943263ejx.76.1599065455571; Wed, 02 Sep 2020 09:50:55 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1599065455; cv=none; d=google.com; s=arc-20160816; b=Mo0AuR0CdaQahtw3n2pmt2H24JD4pnvN2MkP1bm68/Zmji4l250qfQzUCw1pBorlLr M3u2VUPNkyo3PTcloRDLLYItvcAsuguy4s9q0STZ5V5X8mWTNIlcaLRvmaZfG13Q0e7+ Yh7q1EqolP0muY5odpIYkONaBMYm4HdP2SyfVp3OnNCURo1cWRgu+5c3AKoVopNVGxVV M33PmdyA8uCTVgU5XTZc03sJe46S390o2aojDW02nfykGPbDq3V+kSyhuQb8tMaEt24j XhTPDUvw+eKKqpswJn2B7v/t39zTdJdXqtVWVWAB3/FavujKNwEAc08+cYMUQY1wuvRa SGZA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date; bh=5LL8V5TiSFXExncZlJlbY7Z43crNPhvCAQWL2+TDOeo=; b=iEFOMrS9mPUuE1X6g5AUhUJSUVQrIDu7Qi4mC461xJtYFU5GvKCBuVhrxsQKkf62t1 2uhsg2C3G2jPeN/XD1Gj6J8Oa8RghlMIV+noy/JHe4eEItbV5i6foSEn8XiPjqj1fMuw vQ1lQpsmtt0rIWEdI3nwk1WKCcoNdADmHzXFWwD21KTvyl3WBxlXKkqjaVinFbmig9Oi iWHU90FFqAFTAHB0tT35pQk8an9xoK/RMoTaz5b1d8sb8rl0fN0bL2zj1xmE5qIRQKjj A7jFe4mfWVcLecFErJICUo5Q583ZyIF5PRr3dMv3kWkotLspB9GdpY5/uMoVF0UClC4Y M8HA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id w21si2963302edv.485.2020.09.02.09.50.31; Wed, 02 Sep 2020 09:50:55 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727026AbgIBQsa (ORCPT + 99 others); Wed, 2 Sep 2020 12:48:30 -0400 Received: from foss.arm.com ([217.140.110.172]:42456 "EHLO foss.arm.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726526AbgIBQsa (ORCPT ); Wed, 2 Sep 2020 12:48:30 -0400 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 7F34E1045; Wed, 2 Sep 2020 09:48:29 -0700 (PDT) Received: from arm.com (usa-sjc-imap-foss1.foss.arm.com [10.121.207.14]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 2FFFE3F66F; Wed, 2 Sep 2020 09:48:28 -0700 (PDT) Date: Wed, 2 Sep 2020 17:48:26 +0100 From: Dave Martin To: Boyan Karatotev Cc: linux-arm-kernel@lists.infradead.org, linux-kselftest@vger.kernel.org, linux-kernel@vger.kernel.org, Will Deacon , boian4o1@gmail.com, Catalin Marinas , amit.kachhap@arm.com, vincenzo.frascino@arm.com, Shuah Khan Subject: Re: [PATCH 0/4] kselftests/arm64: add PAuth tests Message-ID: <20200902164825.GH6642@arm.com> References: <20200828131606.7946-1-boyan.karatotev@arm.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20200828131606.7946-1-boyan.karatotev@arm.com> User-Agent: Mutt/1.5.23 (2014-03-12) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Aug 28, 2020 at 02:16:02PM +0100, Boyan Karatotev wrote: > Pointer Authentication (PAuth) is a security feature introduced in ARMv8.3. > It introduces instructions to sign addresses and later check for potential > corruption using a second modifier value and one of a set of keys. The > signature, in the form of the Pointer Authentication Code (PAC), is stored > in some of the top unused bits of the virtual address (e.g. [54: 49] if > TBID0 is enabled and TnSZ is set to use a 48 bit VA space). A set of > controls are present to enable/disable groups of instructions (which use > certain keys) for compatibility with libraries that do not utilize the > feature. PAuth is used to verify the integrity of return addresses on the > stack with less memory than the stack canary. > > This patchset adds kselftests to verify the kernel's configuration of the > feature and its runtime behaviour. There are 7 tests which verify that: > * an authentication failure leads to a SIGSEGV > * the data/instruction instruction groups are enabled > * the generic instructions are enabled > * all 5 keys are unique for a single thread > * exec() changes all keys to new unique ones > * context switching preserves the 4 data/instruction keys > * context switching preserves the generic keys > > The tests have been verified to work on qemu without a working PAUTH > Implementation and on ARM's FVP with a full or partial PAuth > implementation. > > Note: This patchset is only verified for ARMv8.3 and there will be some > changes required for ARMv8.6. More details can be found here [1]. Once > ARMv8.6 PAuth is merged the first test in this series will required to be > updated. Nit: is it worth running checkpatch over this series? Although this is not kernel code, there are a number of formatting weirdnesses and surplus blank lines etc. that checkpatch would probably warn about. [...] Cheers ---Dave