[PATCH 24/29] x86/text-patching: Make text_gen_insn() IBT aware

From: Peter Zijlstra
Date: Fri Feb 18 2022 - 12:15:07 EST

Next message: Peter Zijlstra: "[PATCH 11/29] x86/ibt,crypto: Add ENDBR for the jump-table entries"
Previous message: Sean Christopherson: "Re: [PATCH v2 03/18] KVM: x86/mmu: WARN if PAE roots linger after kvm_mmu_unload"
In reply to: Peter Zijlstra: "[PATCH 00/29] x86: Kernel IBT"
Next in thread: Joao Moreira: "Re: [PATCH 24/29] x86/text-patching: Make text_gen_insn() IBT aware"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Make sure we don't generate direct JMP/CALL instructions to an ENDBR
instruction (which might be poison).

Signed-off-by: Peter Zijlstra (Intel) <peterz@xxxxxxxxxxxxx>
---
arch/x86/include/asm/text-patching.h | 6 ++++++
1 file changed, 6 insertions(+)

--- a/arch/x86/include/asm/text-patching.h
+++ b/arch/x86/include/asm/text-patching.h
@@ -5,6 +5,7 @@
#include <linux/types.h>
#include <linux/stddef.h>
#include <asm/ptrace.h>
+#include <asm/ibt.h>

struct paravirt_patch_site;
#ifdef CONFIG_PARAVIRT
@@ -101,6 +102,11 @@ void *text_gen_insn(u8 opcode, const voi
static union text_poke_insn insn; /* per instance */
int size = text_opcode_size(opcode);

+#ifdef CONFIG_X86_IBT
+ if (is_endbr(dest))
+ dest += 4;
+#endif
+
insn.opcode = opcode;

if (size > 1) {

Next message: Peter Zijlstra: "[PATCH 11/29] x86/ibt,crypto: Add ENDBR for the jump-table entries"
Previous message: Sean Christopherson: "Re: [PATCH v2 03/18] KVM: x86/mmu: WARN if PAE roots linger after kvm_mmu_unload"
In reply to: Peter Zijlstra: "[PATCH 00/29] x86: Kernel IBT"
Next in thread: Joao Moreira: "Re: [PATCH 24/29] x86/text-patching: Make text_gen_insn() IBT aware"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]