From: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
To: Andrew Cooper <Andrew.Cooper3@citrix.com>
Cc: Bjoern Doebel <doebel@amazon.de>,
"xen-devel@lists.xenproject.org" <xen-devel@lists.xenproject.org>,
Michael Kurth <mku@amazon.de>,
Martin Pohlack <mpohlack@amazon.de>,
Roger Pau Monne <roger.pau@citrix.com>,
Ross Lagerwall <ross.lagerwall@citrix.com>
Subject: Re: [PATCH v3 2/2] xen/x86: Livepatch: support patching CET-enhanced functions
Date: Tue, 8 Mar 2022 08:06:02 -0500 [thread overview]
Message-ID: <YidUuuWGAghGY7oM@char.us.oracle.com> (raw)
In-Reply-To: <cf0be28d-090c-1881-5831-1d58696a9272@citrix.com>
On Tue, Mar 08, 2022 at 12:44:54PM +0000, Andrew Cooper wrote:
> On 08/03/2022 10:29, Bjoern Doebel wrote:
> > @@ -104,18 +122,34 @@ void noinline arch_livepatch_revive(void)
> >
> > int arch_livepatch_verify_func(const struct livepatch_func *func)
> > {
> > + BUILD_BUG_ON(sizeof(struct x86_livepatch_meta) != LIVEPATCH_OPAQUE_SIZE);
> > +
> > /* If NOPing.. */
> > if ( !func->new_addr )
> > {
> > /* Only do up to maximum amount we can put in the ->opaque. */
> > - if ( func->new_size > sizeof(func->opaque) )
> > + if ( func->new_size > sizeof_field(struct x86_livepatch_meta,
> > + instruction) )
> > return -EOPNOTSUPP;
> >
> > if ( func->old_size < func->new_size )
> > return -EINVAL;
> > }
> > - else if ( func->old_size < ARCH_PATCH_INSN_SIZE )
> > - return -EINVAL;
> > + else
> > + {
> > + /*
> > + * Space needed now depends on whether the target function
> > + * starts with an ENDBR64 instruction.
> > + */
> > + uint8_t needed;
> > +
> > + needed = ARCH_PATCH_INSN_SIZE;
> > + if ( is_endbr64(func->old_addr) )
> > + needed += ENDBR64_LEN;
>
> This won't work for cf_clobber targets, I don't think. The ENDBR gets
> converted to NOP4 and fails this check, but the altcalls calling
> old_func had their displacements adjusted by +4.
>
> The is_endbr64() check will fail, and the 5-byte jmp will be written at
> the start of the function, and corrupt the instruction stream for the
> altcall()'d callers.
>
> Let me write an incremental patch to help.
Please add Acked-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
on the patches.
Thank you
>
> ~Andrew
next prev parent reply other threads:[~2022-03-08 13:06 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <453c6e5decb315109a4fbf0065cc364129dca195.1646735357.git.doebel@amazon.de>
2022-03-08 10:29 ` [PATCH v3 2/2] xen/x86: Livepatch: support patching CET-enhanced functions Bjoern Doebel
2022-03-08 12:44 ` Andrew Cooper
2022-03-08 13:06 ` Konrad Rzeszutek Wilk [this message]
2022-03-08 13:21 ` Doebel, Bjoern
2022-03-08 13:20 ` Doebel, Bjoern
2022-03-08 15:25 ` Ross Lagerwall
2022-03-08 15:41 ` Doebel, Bjoern
2022-03-08 16:01 ` Ross Lagerwall
2022-03-08 16:54 ` Doebel, Bjoern
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YidUuuWGAghGY7oM@char.us.oracle.com \
--to=konrad.wilk@oracle.com \
--cc=Andrew.Cooper3@citrix.com \
--cc=doebel@amazon.de \
--cc=mku@amazon.de \
--cc=mpohlack@amazon.de \
--cc=roger.pau@citrix.com \
--cc=ross.lagerwall@citrix.com \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.