From: madvenka@linux.microsoft.com
To: mark.rutland@arm.com, broonie@kernel.org, jpoimboe@redhat.com,
jthierry@redhat.com, catalin.marinas@arm.com, will@kernel.org,
linux-arm-kernel@lists.infradead.org,
live-patching@vger.kernel.org, linux-kernel@vger.kernel.org,
madvenka@linux.microsoft.com
Subject: [RFC PATCH v2 1/4] arm64: Implement infrastructure for stack trace reliability checks
Date: Mon, 5 Apr 2021 15:43:10 -0500 [thread overview]
Message-ID: <20210405204313.21346-2-madvenka@linux.microsoft.com> (raw)
In-Reply-To: <20210405204313.21346-1-madvenka@linux.microsoft.com>
From: "Madhavan T. Venkataraman" <madvenka@linux.microsoft.com>
Implement a check_reliability() function that will contain checks for the
presence of various features and conditions that can render the stack trace
unreliable.
Introduce the first reliability check - If a return PC encountered in a
stack trace is not a valid kernel text address, the stack trace is
considered unreliable. It could be some generated code.
Other reliability checks will be added in the future.
These checks will involve checking the return PC to see if it falls inside
any special functions where the stack trace is considered unreliable.
Implement the infrastructure needed for this.
Signed-off-by: Madhavan T. Venkataraman <madvenka@linux.microsoft.com>
---
arch/arm64/include/asm/stacktrace.h | 2 +
arch/arm64/kernel/stacktrace.c | 80 +++++++++++++++++++++++++++++
2 files changed, 82 insertions(+)
diff --git a/arch/arm64/include/asm/stacktrace.h b/arch/arm64/include/asm/stacktrace.h
index eb29b1fe8255..684f65808394 100644
--- a/arch/arm64/include/asm/stacktrace.h
+++ b/arch/arm64/include/asm/stacktrace.h
@@ -59,6 +59,7 @@ struct stackframe {
#ifdef CONFIG_FUNCTION_GRAPH_TRACER
int graph;
#endif
+ bool reliable;
};
extern int unwind_frame(struct task_struct *tsk, struct stackframe *frame);
@@ -169,6 +170,7 @@ static inline void start_backtrace(struct stackframe *frame,
bitmap_zero(frame->stacks_done, __NR_STACK_TYPES);
frame->prev_fp = 0;
frame->prev_type = STACK_TYPE_UNKNOWN;
+ frame->reliable = true;
}
#endif /* __ASM_STACKTRACE_H */
diff --git a/arch/arm64/kernel/stacktrace.c b/arch/arm64/kernel/stacktrace.c
index ad20981dfda4..557657d6e6bd 100644
--- a/arch/arm64/kernel/stacktrace.c
+++ b/arch/arm64/kernel/stacktrace.c
@@ -18,6 +18,84 @@
#include <asm/stack_pointer.h>
#include <asm/stacktrace.h>
+struct function_range {
+ unsigned long start;
+ unsigned long end;
+};
+
+/*
+ * Special functions where the stack trace is unreliable.
+ */
+static struct function_range special_functions[] = {
+ { /* sentinel */ }
+};
+
+static bool is_reliable_function(unsigned long pc)
+{
+ static bool inited = false;
+ struct function_range *func;
+
+ if (!inited) {
+ static char sym[KSYM_NAME_LEN];
+ unsigned long size, offset;
+
+ for (func = special_functions; func->start; func++) {
+ if (kallsyms_lookup(func->start, &size, &offset,
+ NULL, sym)) {
+ func->start -= offset;
+ func->end = func->start + size;
+ } else {
+ /*
+ * This is just a label. So, we only need to
+ * consider that particular location. So, size
+ * is the size of one Aarch64 instruction.
+ */
+ func->end = func->start + 4;
+ }
+ }
+ inited = true;
+ }
+
+ for (func = special_functions; func->start; func++) {
+ if (pc >= func->start && pc < func->end)
+ return false;
+ }
+ return true;
+}
+
+/*
+ * Check for the presence of features and conditions that render the stack
+ * trace unreliable.
+ *
+ * Once all such cases have been addressed, this function can aid live
+ * patching (and this comment can be removed).
+ */
+static void check_reliability(struct stackframe *frame)
+{
+ /*
+ * If the stack trace has already been marked unreliable, just return.
+ */
+ if (!frame->reliable)
+ return;
+
+ /*
+ * First, make sure that the return address is a proper kernel text
+ * address. A NULL or invalid return address probably means there's
+ * some generated code which __kernel_text_address() doesn't know
+ * about. Mark the stack trace as not reliable.
+ */
+ if (!__kernel_text_address(frame->pc)) {
+ frame->reliable = false;
+ return;
+ }
+
+ /*
+ * Check the reliability of the return PC's function.
+ */
+ if (!is_reliable_function(frame->pc))
+ frame->reliable = false;
+}
+
/*
* AArch64 PCS assigns the frame pointer to x29.
*
@@ -108,6 +186,8 @@ int notrace unwind_frame(struct task_struct *tsk, struct stackframe *frame)
frame->pc = ptrauth_strip_insn_pac(frame->pc);
+ check_reliability(frame);
+
return 0;
}
NOKPROBE_SYMBOL(unwind_frame);
--
2.25.1
_______________________________________________
linux-arm-kernel mailing list
linux-arm-kernel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-arm-kernel
next prev parent reply other threads:[~2021-04-05 20:45 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <705993ccb34a611c75cdae0a8cb1b40f9b218ebd>
2021-04-05 20:43 ` [RFC PATCH v2 0/4] arm64: Implement stack trace reliability checks madvenka
2021-04-05 20:43 ` madvenka [this message]
2021-04-08 15:15 ` [RFC PATCH v2 1/4] arm64: Implement infrastructure for " Mark Brown
2021-04-08 17:17 ` Mark Brown
2021-04-08 19:30 ` Madhavan T. Venkataraman
2021-04-08 23:30 ` Madhavan T. Venkataraman
2021-04-09 11:57 ` Mark Brown
2021-04-05 20:43 ` [RFC PATCH v2 2/4] arm64: Mark a stack trace unreliable if an EL1 exception frame is detected madvenka
2021-04-05 20:43 ` [RFC PATCH v2 3/4] arm64: Detect FTRACE cases that make the stack trace unreliable madvenka
2021-04-08 16:58 ` Mark Brown
2021-04-08 19:23 ` Madhavan T. Venkataraman
2021-04-09 11:31 ` Mark Brown
2021-04-09 14:02 ` Madhavan T. Venkataraman
2021-04-09 12:27 ` Mark Rutland
2021-04-09 17:23 ` Madhavan T. Venkataraman
2021-04-05 20:43 ` [RFC PATCH v2 4/4] arm64: Mark stack trace as unreliable if kretprobed functions are present madvenka
2021-04-09 12:09 ` [RFC PATCH v2 0/4] arm64: Implement stack trace reliability checks Mark Rutland
2021-04-09 17:16 ` Madhavan T. Venkataraman
2021-04-09 21:37 ` Josh Poimboeuf
2021-04-09 22:05 ` Madhavan T. Venkataraman
2021-04-09 22:32 ` Josh Poimboeuf
2021-04-09 22:53 ` Josh Poimboeuf
2021-04-11 17:54 ` Madhavan T. Venkataraman
2021-04-12 16:59 ` Mark Brown
2021-04-13 22:53 ` Josh Poimboeuf
2021-04-14 12:24 ` Mark Brown
2021-04-12 17:36 ` Mark Brown
2021-04-12 19:55 ` Madhavan T. Venkataraman
2021-04-13 11:02 ` Mark Brown
2021-04-14 10:23 ` Madhavan T. Venkataraman
2021-04-14 12:35 ` Mark Brown
2021-04-16 14:43 ` Madhavan T. Venkataraman
2021-04-16 15:36 ` Mark Brown
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20210405204313.21346-2-madvenka@linux.microsoft.com \
--to=madvenka@linux.microsoft.com \
--cc=broonie@kernel.org \
--cc=catalin.marinas@arm.com \
--cc=jpoimboe@redhat.com \
--cc=jthierry@redhat.com \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-kernel@vger.kernel.org \
--cc=live-patching@vger.kernel.org \
--cc=mark.rutland@arm.com \
--cc=will@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).