From patchwork Mon Jul 24 12:46:11 2023
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Mark Brown <broonie@kernel.org>
X-Patchwork-Id: 13324644
Return-Path: <owner-linux-mm@kvack.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by smtp.lore.kernel.org (Postfix) with ESMTP id E3BABC0015E
	for <linux-mm@archiver.kernel.org>; Mon, 24 Jul 2023 12:49:36 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
	id 866FA8E0002; Mon, 24 Jul 2023 08:49:36 -0400 (EDT)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id 814B56B0092; Mon, 24 Jul 2023 08:49:36 -0400 (EDT)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id 6DCD78E0002; Mon, 24 Jul 2023 08:49:36 -0400 (EDT)
X-Delivered-To: linux-mm@kvack.org
Received: from relay.hostedemail.com (smtprelay0011.hostedemail.com
 [216.40.44.11])
	by kanga.kvack.org (Postfix) with ESMTP id 5D82B6B008C
	for <linux-mm@kvack.org>; Mon, 24 Jul 2023 08:49:36 -0400 (EDT)
Received: from smtpin06.hostedemail.com (a10.router.float.18 [10.200.18.1])
	by unirelay04.hostedemail.com (Postfix) with ESMTP id 1CF111A0A92
	for <linux-mm@kvack.org>; Mon, 24 Jul 2023 12:49:36 +0000 (UTC)
X-FDA: 81046486752.06.7CFA919
Received: from dfw.source.kernel.org (dfw.source.kernel.org [139.178.84.217])
	by imf26.hostedemail.com (Postfix) with ESMTP id 232CF14001A
	for <linux-mm@kvack.org>; Mon, 24 Jul 2023 12:49:33 +0000 (UTC)
Authentication-Results: imf26.hostedemail.com;
	dkim=pass header.d=kernel.org header.s=k20201202 header.b=S2by7fTw;
	spf=pass (imf26.hostedemail.com: domain of broonie@kernel.org designates
 139.178.84.217 as permitted sender) smtp.mailfrom=broonie@kernel.org;
	dmarc=pass (policy=none) header.from=kernel.org
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;
 d=hostedemail.com;
	s=arc-20220608; t=1690202974;
	h=from:from:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references:dkim-signature;
	bh=7Xh0jTR0r8+ize43vTl6QzYzhaS83l1nMVxt1u8Uym0=;
	b=bsGI5NqSgc1WZ6CkjITQzSsmYtybXUr02v0L6bQUEhP4zZ4yGvyTdpAd0ZcxYiLTwyc3gP
	13WdIeCdH96E7UHc7gMuUXZvm/Cy91QQ2SIJNmF9SMAcQp1b87X8nkP9OeWlkkTlVQzZSC
	f7oQImOoiK6NXDxTWljE6fd6PEaDkSc=
ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1690202974; a=rsa-sha256;
	cv=none;
	b=poCsS3P17nB76mAexrbFUvDyBDtKHIFYc5zzY1nlMkZE2+0JFibNQ7q/bBGug2yVFd4uSh
	hVNZEqOquTjn/WSTt3W90g8x59L3zOpRmtTgESBeiYEx6wbKeXA2rJuu7TJG6X2pkrjw8T
	Y30p7/NEetyD6uMeCorE/PS8IgbNZxw=
ARC-Authentication-Results: i=1;
	imf26.hostedemail.com;
	dkim=pass header.d=kernel.org header.s=k20201202 header.b=S2by7fTw;
	spf=pass (imf26.hostedemail.com: domain of broonie@kernel.org designates
 139.178.84.217 as permitted sender) smtp.mailfrom=broonie@kernel.org;
	dmarc=pass (policy=none) header.from=kernel.org
Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits))
	(No client certificate requested)
	by dfw.source.kernel.org (Postfix) with ESMTPS id 72FA061169;
	Mon, 24 Jul 2023 12:49:33 +0000 (UTC)
Received: by smtp.kernel.org (Postfix) with ESMTPSA id E8FE5C43395;
	Mon, 24 Jul 2023 12:49:26 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=k20201202; t=1690202972;
	bh=0QIP38ZumyMQzrMYtc7Z/0L/bXiC+1OudC2zVRODlMU=;
	h=From:Date:Subject:References:In-Reply-To:To:Cc:From;
	b=S2by7fTwtza1j7xK4vbG8/TPOT2ELIzrq6FBkXgnpc6RctcJGbowE2cdinUL4ulWk
	 7kgfWBLa3QPeh67Bq/HwoBGJPM3YKT3ieNSZa3vjgLZvwW6V298RjM3nH+udx3CZ7C
	 BalpvWV9J6jGIyyXUu5c/FlFhlhXbavjPDUawnWhwgNT/Wf2N/860D5yMszrT+6AnJ
	 u25J44GdZV9Dr/bbXzh20oPEcGz+lcIPgUy2JEBop64BJ1G/yRUV/1MQNCVuhE2pbT
	 JmF6sNtU8bcS1oP52Rijepzl0lILyOL3xAYAStMey/6YrpMjkwefKWab1SHoNzf58u
	 lAzw2ITdTjNfA==
From: Mark Brown <broonie@kernel.org>
Date: Mon, 24 Jul 2023 13:46:11 +0100
Subject: [PATCH v2 24/35] arm64/ptrace: Expose GCS via ptrace and core
 files
MIME-Version: 1.0
Message-Id: <20230724-arm64-gcs-v2-24-dc2c1d44c2eb@kernel.org>
References: <20230724-arm64-gcs-v2-0-dc2c1d44c2eb@kernel.org>
In-Reply-To: <20230724-arm64-gcs-v2-0-dc2c1d44c2eb@kernel.org>
To: Catalin Marinas <catalin.marinas@arm.com>,
 Will Deacon <will@kernel.org>, Jonathan Corbet <corbet@lwn.net>,
 Andrew Morton <akpm@linux-foundation.org>, Marc Zyngier <maz@kernel.org>,
 Oliver Upton <oliver.upton@linux.dev>, James Morse <james.morse@arm.com>,
 Suzuki K Poulose <suzuki.poulose@arm.com>, Arnd Bergmann <arnd@arndb.de>,
 Oleg Nesterov <oleg@redhat.com>, Eric Biederman <ebiederm@xmission.com>,
 Kees Cook <keescook@chromium.org>, Shuah Khan <shuah@kernel.org>,
 "Rick P. Edgecombe" <rick.p.edgecombe@intel.com>,
 Deepak Gupta <debug@rivosinc.com>, Ard Biesheuvel <ardb@kernel.org>,
 Szabolcs Nagy <Szabolcs.Nagy@arm.com>
Cc: "H.J. Lu" <hjl.tools@gmail.com>,
 Paul Walmsley <paul.walmsley@sifive.com>,
 Palmer Dabbelt <palmer@dabbelt.com>, Albert Ou <aou@eecs.berkeley.edu>,
 linux-arm-kernel@lists.infradead.org, linux-doc@vger.kernel.org,
 kvmarm@lists.linux.dev, linux-fsdevel@vger.kernel.org,
 linux-arch@vger.kernel.org, linux-mm@kvack.org,
 linux-kselftest@vger.kernel.org, linux-kernel@vger.kernel.org,
 linux-riscv@lists.infradead.org, Mark Brown <broonie@kernel.org>
X-Mailer: b4 0.13-dev-099c9
X-Developer-Signature: v=1; a=openpgp-sha256; l=4259; i=broonie@kernel.org;
 h=from:subject:message-id; bh=0QIP38ZumyMQzrMYtc7Z/0L/bXiC+1OudC2zVRODlMU=;
 b=owEBbQGS/pANAwAKASTWi3JdVIfQAcsmYgBkvnKnsKf0W3lFoB635rzoGTaz2yndy/CskcQVKCzm
 47uSwjaJATMEAAEKAB0WIQSt5miqZ1cYtZ/in+ok1otyXVSH0AUCZL5ypwAKCRAk1otyXVSH0AebB/
 9puHQ2nwuUf5/vMSPRgsFleh5e8Wzb39H2Z5TEz9UwGoC/oIWJUEWVBE4rq/Rh28vaZI7jO8ZJyAta
 21BWYzIEGw6stgm713SrMoFk2ZjG7RqY0nnGCWqcnSEb0pNnKbzaXp0reUarS0StFUw6hli3dYbmBN
 QtVbuiA+19RLe6CiXaEG8sQecaHQquhFMUjYf2OOpLdfB8IzlPHpE93YRBqRK8t1AcKPzkGab0+uN4
 FjBtounVbAZNw2iobITFysaexYdZPhDsMqBbufwQGQhzhsXveM2YJWEjo3+yvHwtajHgHDwAjJpdvo
 1whVPHF41mLonD9s5b5HGyBbHehGOz
X-Developer-Key: i=broonie@kernel.org; a=openpgp;
 fpr=3F2568AAC26998F9E813A1C5C3F436CA30F5D8EB
X-Rspamd-Queue-Id: 232CF14001A
X-Rspam-User: 
X-Rspamd-Server: rspam11
X-Stat-Signature: nkwtpa978doif1toyoncm6mu87dsdqw8
X-HE-Tag: 1690202973-658772
X-HE-Meta: 
 U2FsdGVkX1+SHHeKiPG/Ba5JbYMhZZNgIUL++3ITwWyX7HUafiPA8PDLKLT2DvcqtDVokRPqAD5zTVbo2d1mgi2VorV3L+M6SdLQILcx5fKsaFuX5XDEh5VNRYXv9x/IwTjxrkuQdCHVDHAdOqY0xP8ZbTIosQAWrNkY1EyNlsAaXtVQXmTcmu337h0X67T+8YWFcsN4slR66w7mJdDd03f1T0wFE/4it7o04+bUsj5okfXSl+2NBIgTe0O5tggmsd5Pf+jFewKKiKWz6Sx0lkNFcWQqNrSmzR2kR4SxjkICrCbmMuDwYE8W4Bh0X3vuy582THg77AdWu0LI4ybNzUU4ZChg31GLwHYWdPnpzMkyUT7ROLtzZZYCCkQK5elQUyBTZdpMbZ8RZTv71LT1IL+0t2fhfgP7Hw+gTqJmGPjA6NnHCEamXp3lPzgz3EAFXB5YOXynHeqcf+6ScsX4HkYs2/NJXFYZDSMRwKE99CZcNEtnc7PdDt15GJ9T/Ajd7LMlg0qzEgdGMi0K/aazcXV6AWoStpSRvJsp4mNanjDLR8lDp4MWKcTmW+Bn+A8rOsBFOzKySDqc7e74xaGJWeFxcnII+YEKrxB4wNTGL5nomTbw6jNqe03Do9bRxzeB4X9YyzrqA1oBlrvL+9JeJzwhN51zXdT+kRS9uwTFODwf4BOSq5wsU/A14PgIJJ4UQIr9gkLyillYCZE6pIpe0yViRZZoMpGmCQIxYDs9xp73qOSBw31OXrInTlrKWA9biN4GxpxZhFh5gOEQrVJfU2nmO8rEchFyllh7HjX9TQKQZ/2HTjlEd28jYZ2VNDs/FyAEjZqzVYlnLLYHOaXklBaBGb2ANCjBOAi+Qk8B9swXcmo/kxWQusiwnRN9snLMAs95EIO9AQucVkCpZ7GFbtxKvzUyVGVNYmpzepYe4U9qPKtYYQDIyqMgv3rUIOrtfx5RVKNzoN8DiFTsbQW
 uaUho7pS
 H66fV+Io3VotFzQ3NW1OKvIophroJpTS5cwlnKl2x+rR4TVFIn4Do1XeXp9dBCbqNWnNSo+mqBEhHeu8dy161lncc0beNjf4vZdTAbsRdhlZthPBmNqbp+yzs9WwcTuNS1THgfA2nYlaFcbPvlEl2/fsOUHazNu5axOwy4O8xkm8PDKMCYajA2av4Tccj/zrnDPh8ofrIBQS5KetQPTFl8hiie0gkMkEdpzSNTyoo2P9vEoUiI86Z92gHR90hnzzSyALnOsnTYlHJxQWHNZjnwEzQw0HDGj9xG8Zk8xxo4UKg+SpT2CKgeAAq0YASW/NNEvvpVHSrTp+hyqkZisETH4ZMIg0k+fF/cXsvSr87Ug24GehAAXwxdN5Nu/dHz5N35wvoKkmNLJWshtj5IN5I/XF6nvcRpP7PwauOYJPOibStzeExJNhCi2uPQt1RKq0OpRfoPniGkWrr5cw=
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>

Provide a new register type NT_ARM_GCS reporting the current GCS mode
and pointer for EL0.  Due to the interactions with allocation and
deallocation of Guarded Control Stacks we do not permit any changes to
the GCS mode via ptrace, only GCSPR_EL0 may be changed.

Signed-off-by: Mark Brown <broonie@kernel.org>
---
 arch/arm64/include/uapi/asm/ptrace.h |  8 +++++
 arch/arm64/kernel/ptrace.c           | 59 ++++++++++++++++++++++++++++++++++++
 include/uapi/linux/elf.h             |  1 +
 3 files changed, 68 insertions(+)

diff --git a/arch/arm64/include/uapi/asm/ptrace.h b/arch/arm64/include/uapi/asm/ptrace.h
index 7fa2f7036aa7..0f39ba4f3efd 100644
--- a/arch/arm64/include/uapi/asm/ptrace.h
+++ b/arch/arm64/include/uapi/asm/ptrace.h
@@ -324,6 +324,14 @@ struct user_za_header {
 #define ZA_PT_SIZE(vq)						\
 	(ZA_PT_ZA_OFFSET + ZA_PT_ZA_SIZE(vq))
 
+/* GCS state (NT_ARM_GCS) */
+
+struct user_gcs {
+	__u64 features_enabled;
+	__u64 features_locked;
+	__u64 gcspr_el0;
+};
+
 #endif /* __ASSEMBLY__ */
 
 #endif /* _UAPI__ASM_PTRACE_H */
diff --git a/arch/arm64/kernel/ptrace.c b/arch/arm64/kernel/ptrace.c
index d7f4f0d1ae12..c159090bc731 100644
--- a/arch/arm64/kernel/ptrace.c
+++ b/arch/arm64/kernel/ptrace.c
@@ -33,6 +33,7 @@
 #include <asm/cpufeature.h>
 #include <asm/debug-monitors.h>
 #include <asm/fpsimd.h>
+#include <asm/gcs.h>
 #include <asm/mte.h>
 #include <asm/pointer_auth.h>
 #include <asm/stacktrace.h>
@@ -1390,6 +1391,51 @@ static int tagged_addr_ctrl_set(struct task_struct *target, const struct
 }
 #endif
 
+#ifdef CONFIG_ARM64_GCS
+static int gcs_get(struct task_struct *target,
+		   const struct user_regset *regset,
+		   struct membuf to)
+{
+	struct user_gcs user_gcs;
+
+	if (target == current)
+		gcs_preserve_current_state();
+
+	user_gcs.features_enabled = target->thread.gcs_el0_mode;
+	user_gcs.features_locked = target->thread.gcs_el0_locked;
+	user_gcs.gcspr_el0 = target->thread.gcspr_el0;
+
+	return membuf_write(&to, &user_gcs, sizeof(user_gcs));
+}
+
+static int gcs_set(struct task_struct *target, const struct
+		   user_regset *regset, unsigned int pos,
+		   unsigned int count, const void *kbuf, const
+		   void __user *ubuf)
+{
+	int ret;
+	struct user_gcs user_gcs;
+
+	ret = user_regset_copyin(&pos, &count, &kbuf, &ubuf, &user_gcs, 0, -1);
+	if (ret)
+		return ret;
+
+	if (user_gcs.features_enabled & ~PR_SHADOW_STACK_SUPPORTED_STATUS_MASK)
+		return -EINVAL;
+
+	/* Do not allow enable via ptrace */
+	if ((user_gcs.features_enabled & PR_SHADOW_STACK_ENABLE) &&
+	    !!(target->thread.gcs_el0_mode & PR_SHADOW_STACK_ENABLE))
+		return -EBUSY;
+
+	target->thread.gcs_el0_mode = user_gcs.features_enabled;
+	target->thread.gcs_el0_locked = user_gcs.features_locked;
+	target->thread.gcspr_el0 = user_gcs.gcspr_el0;
+
+	return 0;
+}
+#endif
+
 enum aarch64_regset {
 	REGSET_GPR,
 	REGSET_FPR,
@@ -1418,6 +1464,9 @@ enum aarch64_regset {
 #ifdef CONFIG_ARM64_TAGGED_ADDR_ABI
 	REGSET_TAGGED_ADDR_CTRL,
 #endif
+#ifdef CONFIG_ARM64_GCS
+	REGSET_GCS,
+#endif
 };
 
 static const struct user_regset aarch64_regsets[] = {
@@ -1568,6 +1617,16 @@ static const struct user_regset aarch64_regsets[] = {
 		.set = tagged_addr_ctrl_set,
 	},
 #endif
+#ifdef CONFIG_ARM64_GCS
+	[REGSET_GCS] = {
+		.core_note_type = NT_ARM_GCS,
+		.n = sizeof(struct user_gcs) / sizeof(u64),
+		.size = sizeof(u64),
+		.align = sizeof(u64),
+		.regset_get = gcs_get,
+		.set = gcs_set,
+	},
+#endif
 };
 
 static const struct user_regset_view user_aarch64_view = {
diff --git a/include/uapi/linux/elf.h b/include/uapi/linux/elf.h
index 0c8cf359ea5b..00f698a2ab17 100644
--- a/include/uapi/linux/elf.h
+++ b/include/uapi/linux/elf.h
@@ -438,6 +438,7 @@ typedef struct elf64_shdr {
 #define NT_ARM_SSVE	0x40b		/* ARM Streaming SVE registers */
 #define NT_ARM_ZA	0x40c		/* ARM SME ZA registers */
 #define NT_ARM_ZT	0x40d		/* ARM SME ZT registers */
+#define NT_ARM_GCS	0x40e		/* ARM GCS state */
 #define NT_ARC_V2	0x600		/* ARCv2 accumulator/extra registers */
 #define NT_VMCOREDD	0x700		/* Vmcore Device Dump Note */
 #define NT_MIPS_DSP	0x800		/* MIPS DSP ASE registers */