[3/5] x86: ascii armor the x86_64 boot init stack canary

Message ID	20170519212636.30440-4-riel@redhat.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org> From: riel@redhat.com To: linux-kernel@vger.kernel.org Subject: [PATCH 3/5] x86: ascii armor the x86_64 boot init stack canary Date: Fri, 19 May 2017 17:26:34 -0400 Message-Id: <20170519212636.30440-4-riel@redhat.com> In-Reply-To: <20170519212636.30440-1-riel@redhat.com> References: <20170519212636.30440-1-riel@redhat.com> Precedence: list Cc: tytso@mit.edu, keescook@chromium.org, ysato@users.sourceforge.jp, linux-sh@vger.kernel.org, catalin.marinas@arm.com, x86@kernel.org, luto@amacapital.net, danielmicay@gmail.com, hpa@zytor.com, mingo@kernel.org, linux-arm-kernel@lists.infradead.org MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org> Errors-To: linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org

Message ID

20170519212636.30440-4-riel@redhat.com (mailing list archive)

State

New, archived

Headers

From: riel@redhat.com
To: linux-kernel@vger.kernel.org
Subject: [PATCH 3/5] x86: ascii armor the x86_64 boot init stack canary
Date: Fri, 19 May 2017 17:26:34 -0400
Message-Id: <20170519212636.30440-4-riel@redhat.com>
In-Reply-To: <20170519212636.30440-1-riel@redhat.com>
References: <20170519212636.30440-1-riel@redhat.com>
Precedence: list
Cc: tytso@mit.edu, keescook@chromium.org, ysato@users.sourceforge.jp,
	linux-sh@vger.kernel.org, catalin.marinas@arm.com, x86@kernel.org,
	luto@amacapital.net, danielmicay@gmail.com, hpa@zytor.com,
	mingo@kernel.org, linux-arm-kernel@lists.infradead.org
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org>
Errors-To: linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org

Commit Message

Rik van Riel May 19, 2017, 9:26 p.m. UTC

From: Rik van Riel <riel@redhat.com>

Use the ascii-armor canary to prevent unterminated C string overflows
from being able to successfully overwrite the canary, even if they
somehow obtain the canary value.

Inspired by execshield ascii-armor and PaX/grsecurity.

Signed-off-by: Rik van Riel <riel@redhat.com>
---
 arch/x86/include/asm/stackprotector.h | 1 +
 1 file changed, 1 insertion(+)

diff --git a/arch/x86/include/asm/stackprotector.h b/arch/x86/include/asm/stackprotector.h
index dcbd9bcce714..8abedf1d650e 100644
--- a/arch/x86/include/asm/stackprotector.h
+++ b/arch/x86/include/asm/stackprotector.h
@@ -74,6 +74,7 @@  static __always_inline void boot_init_stack_canary(void)
 	get_random_bytes(&canary, sizeof(canary));
 	tsc = rdtsc();
 	canary += tsc + (tsc << 32UL);
+	canary &= CANARY_MASK;
 
 	current->stack_canary = canary;
 #ifdef CONFIG_X86_64

[3/5] x86: ascii armor the x86_64 boot init stack canary

Commit Message

Patch