Received: by 2002:a05:6a10:9848:0:0:0:0 with SMTP id x8csp725387pxf;
        Wed, 31 Mar 2021 14:39:37 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxR0I2Oz+jwMa+3j9S9MiPsG+Xq2vc++sds/NQrboAURyHqo5RS+Lv+tMNxNXmvHx3EIu/L
X-Received: by 2002:a17:907:75fc:: with SMTP id jz28mr5941665ejc.490.1617226777190;
        Wed, 31 Mar 2021 14:39:37 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1617226777; cv=none;
        d=google.com; s=arc-20160816;
        b=fIKZ1gn7eNeKjTaWSnVeWibaik9i5FyfpTcZ6bMpVbcYgutUdrkx7eICzkBaN7rySx
         3uKd+i+HdAwrPqPUQ0rpPHSTNdYl2rHp/20xNdCrblffK3f73ENs9Alufg1d6+Hl6tAm
         g50+EARmL1D9ueEoYIParOTRgMlbb0k1z3P+VsZG3GCG+BBsdc7ylOLmSPzt7rEox97U
         ibaOwii9MwQ/YAIISjLJH+UjIdNZr1MUpmaxQnbx0Mlrqc+JFxYWBOCmKynhoyVNcguO
         lzrI9oux9G9sMaW+NYxXtoQdIIzjy66qGDFShYR7wmmgH9InXyad9EPZE/4pWZcnqKUR
         ak9w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:from:subject:references:mime-version
         :message-id:in-reply-to:date:dkim-signature;
        bh=u3sb7mCURY4VtmyE6zoVQ18sx7nW16pIZYxJrlMzk+o=;
        b=Dnq+8YbZwhOdLrTQCSNyqhScyk0DqpomOAtbu+Wygc52TWgD6UmKdoi4MZo6+g9SEX
         c6Vosky9O8SilVYvZlPv8ppNfy/u8gCfXDO3vjYj/JNgHl559PT2sQrO19hjAWXUIKJJ
         ZGoNY4oh40KAJbdRQBxKXhffARMKgtAWXQs6i/mUWUqCj9lnOAORYUojwXrD0yH+J55M
         iPRSvZeTeGExb8Wh7gaAmEKfIYRMRmfpVZasyPwmpwB/zyLRM5evLwBCLps1ZEegYBds
         +3wSFl0sijS2RhTATf5IjvFGdvXA0/+aZ3MHcBc5e5r9M/6WaFBxQ5ssnUGnorIIX5i4
         /SZw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=eMFe9hou;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id u19si2861147edo.410.2021.03.31.14.39.14;
        Wed, 31 Mar 2021 14:39:37 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=eMFe9hou;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S233103AbhCaV2x (ORCPT <rfc822;mahfouz.saif.elyazal@gmail.com>
        + 99 others); Wed, 31 Mar 2021 17:28:53 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:51850 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232817AbhCaV1q (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 31 Mar 2021 17:27:46 -0400
Received: from mail-qt1-x84a.google.com (mail-qt1-x84a.google.com [IPv6:2607:f8b0:4864:20::84a])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 01A1BC061761
        for <linux-kernel@vger.kernel.org>; Wed, 31 Mar 2021 14:27:46 -0700 (PDT)
Received: by mail-qt1-x84a.google.com with SMTP id t3so1922169qtp.23
        for <linux-kernel@vger.kernel.org>; Wed, 31 Mar 2021 14:27:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=date:in-reply-to:message-id:mime-version:references:subject:from:to
         :cc;
        bh=u3sb7mCURY4VtmyE6zoVQ18sx7nW16pIZYxJrlMzk+o=;
        b=eMFe9houa2XuN05SOLsaOm1Hewi7pJ9LNis+2l70Pybgv0BDjfh3Tdjx0LeKuDts/8
         5TrWVPttIn2hlb4FWOkPJvsI+3pl4WmXqShOicHoGuBx+x06lTjU0PYmzEkX1eUIZZYm
         2UbSefvKGG4w1T/hAXOi65BNTP7V932xjjIwsFszWbETMcndQAgg2J1lQsmkLEDmJ1uu
         1cOK+xgl4cg4yXyncFGUWYT9T4R4JW24KVZEyJFf3MUxdM4Swj6k/74eJaTzZZDQWuQc
         XORxfZubOGWv8Du+0NlGMiued0fd4ATF8owIEc3jR7W1F5csKMraVh8dIC3NwYQXtmwR
         qYrQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:in-reply-to:message-id:mime-version
         :references:subject:from:to:cc;
        bh=u3sb7mCURY4VtmyE6zoVQ18sx7nW16pIZYxJrlMzk+o=;
        b=G240g3GeuXEQZUXv9660DTiXRXQFEeQ4o7/8WeBaYRcQEl5ENTqQSMeUM4n5IxumdK
         fm5ytOf0qVwv9+pwoIlS1URB0XpNkJbr+jxnpAx5d1dvuyNYcbSGrbG1q6Y75J0Sc2uF
         LHw2J+HGbnTpeV2XoyClB8aaJDnuGA1Muor4+3jjSoJqXDue3xBbNiYf4sXdizqSOXTj
         ljv/7C3QgYeS/cciBsIvFCI7ZgezHl3g3s5W/5CdueeBYNYyDiCLiOLmPNkBtJ2T7CUq
         9RNkLmBARcYzsWp2cwaqR7KbTme2iftqg+CSSVMd4EiOY0tGyln0FiiLtQMhgcktBLcH
         AIzQ==
X-Gm-Message-State: AOAM533dqD7tns7yTG8pUJ5+qVqQExMv1/a3P2hfmPjyEYcFU1XA2j+J
        Im/dgRKP2eU8kYlR6dYYJ1iiIMwtgjuoszPE4pw=
X-Received: from samitolvanen1.mtv.corp.google.com ([2620:15c:201:2:7933:7015:a5d5:3835])
 (user=samitolvanen job=sendgmr) by 2002:a05:6214:945:: with SMTP id
 dn5mr4904341qvb.3.1617226065111; Wed, 31 Mar 2021 14:27:45 -0700 (PDT)
Date:   Wed, 31 Mar 2021 14:27:15 -0700
In-Reply-To: <20210331212722.2746212-1-samitolvanen@google.com>
Message-Id: <20210331212722.2746212-12-samitolvanen@google.com>
Mime-Version: 1.0
References: <20210331212722.2746212-1-samitolvanen@google.com>
X-Mailer: git-send-email 2.31.0.291.g576ba9dcdaf-goog
Subject: [PATCH v4 11/17] psci: use function_nocfi for cpu_resume
From:   Sami Tolvanen <samitolvanen@google.com>
To:     Kees Cook <keescook@chromium.org>
Cc:     Nathan Chancellor <nathan@kernel.org>,
        Nick Desaulniers <ndesaulniers@google.com>,
        Masahiro Yamada <masahiroy@kernel.org>,
        Will Deacon <will@kernel.org>, Jessica Yu <jeyu@kernel.org>,
        Arnd Bergmann <arnd@arndb.de>, Tejun Heo <tj@kernel.org>,
        "Paul E. McKenney" <paulmck@kernel.org>,
        Christoph Hellwig <hch@infradead.org>,
        Peter Zijlstra <peterz@infradead.org>,
        Sedat Dilek <sedat.dilek@gmail.com>, bpf@vger.kernel.org,
        linux-hardening@vger.kernel.org, linux-arch@vger.kernel.org,
        linux-arm-kernel@lists.infradead.org, linux-kbuild@vger.kernel.org,
        linux-pci@vger.kernel.org, linux-kernel@vger.kernel.org,
        clang-built-linux@googlegroups.com,
        Sami Tolvanen <samitolvanen@google.com>
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

With CONFIG_CFI_CLANG, the compiler replaces function pointers with
jump table addresses, which results in __pa_symbol returning the
physical address of the jump table entry. As the jump table contains
an immediate jump to an EL1 virtual address, this typically won't
work as intended. Use function_nocfi to get the actual address of
cpu_resume.

Signed-off-by: Sami Tolvanen <samitolvanen@google.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
---
 drivers/firmware/psci/psci.c | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/drivers/firmware/psci/psci.c b/drivers/firmware/psci/psci.c
index f5fc429cae3f..64344e84bd63 100644
--- a/drivers/firmware/psci/psci.c
+++ b/drivers/firmware/psci/psci.c
@@ -325,8 +325,9 @@ static int __init psci_features(u32 psci_func_id)
 static int psci_suspend_finisher(unsigned long state)
 {
 	u32 power_state = state;
+	phys_addr_t pa_cpu_resume = __pa_symbol(function_nocfi(cpu_resume));
 
-	return psci_ops.cpu_suspend(power_state, __pa_symbol(cpu_resume));
+	return psci_ops.cpu_suspend(power_state, pa_cpu_resume);
 }
 
 int psci_cpu_suspend_enter(u32 state)
@@ -344,8 +345,10 @@ int psci_cpu_suspend_enter(u32 state)
 
 static int psci_system_suspend(unsigned long unused)
 {
+	phys_addr_t pa_cpu_resume = __pa_symbol(function_nocfi(cpu_resume));
+
 	return invoke_psci_fn(PSCI_FN_NATIVE(1_0, SYSTEM_SUSPEND),
-			      __pa_symbol(cpu_resume), 0, 0);
+			      pa_cpu_resume, 0, 0);
 }
 
 static int psci_system_suspend_enter(suspend_state_t state)
-- 
2.31.0.291.g576ba9dcdaf-goog