PageRenderTime 62ms CodeModel.GetById 27ms RepoModel.GetById 1ms app.codeStats 0ms

/arch/arm64/include/asm/pointer_auth.h

https://gitlab.com/pachecof/centos-stream-9
C Header | 152 lines | 116 code | 27 blank | 9 comment | 10 complexity | 3f748ef54f2bdce31fb8b01c97cc9843 MD5 | raw file
    

  1. /* SPDX-License-Identifier: GPL-2.0 */
    2. 

  2. #ifndef __ASM_POINTER_AUTH_H
    3. 

  3. #define __ASM_POINTER_AUTH_H
    4. 

  4. 

  5. #include <linux/bitops.h>
    6. 

  6. #include <linux/prctl.h>
    7. 

  7. #include <linux/random.h>
    8. 

  8. 

  9. #include <asm/cpufeature.h>
    10. 

  10. #include <asm/memory.h>
    11. 

  11. #include <asm/sysreg.h>
    12. 

  12. 

  13. #ifdef CONFIG_ARM64_PTR_AUTH
    14. 

  14. /*
    15. 

  15.  * Each key is a 128-bit quantity which is split across a pair of 64-bit
    16. 

  16.  * registers (Lo and Hi).
    17. 

  17.  */
    18. 

  18. struct ptrauth_key {
    19. 

  19. 	unsigned long lo, hi;
    20. 

  20. };
    21. 

  21. 

  22. /*
    23. 

  23.  * We give each process its own keys, which are shared by all threads. The keys
    24. 

  24.  * are inherited upon fork(), and reinitialised upon exec*().
    25. 

  25.  */
    26. 

  26. struct ptrauth_keys_user {
    27. 

  27. 	struct ptrauth_key apia;
    28. 

  28. 	struct ptrauth_key apib;
    29. 

  29. 	struct ptrauth_key apda;
    30. 

  30. 	struct ptrauth_key apdb;
    31. 

  31. 	struct ptrauth_key apga;
    32. 

  32. };
    33. 

  33. 

  34. #define __ptrauth_key_install_nosync(k, v)			\
    35. 

  35. do {								\
    36. 

  36. 	struct ptrauth_key __pki_v = (v);			\
    37. 

  37. 	write_sysreg_s(__pki_v.lo, SYS_ ## k ## KEYLO_EL1);	\
    38. 

  38. 	write_sysreg_s(__pki_v.hi, SYS_ ## k ## KEYHI_EL1);	\
    39. 

  39. } while (0)
    40. 

  40. 

  41. #ifdef CONFIG_ARM64_PTR_AUTH_KERNEL
    42. 

  42. 

  43. struct ptrauth_keys_kernel {
    44. 

  44. 	struct ptrauth_key apia;
    45. 

  45. };
    46. 

  46. 

  47. static __always_inline void ptrauth_keys_init_kernel(struct ptrauth_keys_kernel *keys)
    48. 

  48. {
    49. 

  49. 	if (system_supports_address_auth())
    50. 

  50. 		get_random_bytes(&keys->apia, sizeof(keys->apia));
    51. 

  51. }
    52. 

  52. 

  53. static __always_inline void ptrauth_keys_switch_kernel(struct ptrauth_keys_kernel *keys)
    54. 

  54. {
    55. 

  55. 	if (!system_supports_address_auth())
    56. 

  56. 		return;
    57. 

  57. 

  58. 	__ptrauth_key_install_nosync(APIA, keys->apia);
    59. 

  59. 	isb();
    60. 

  60. }
    61. 

  61. 

  62. #endif /* CONFIG_ARM64_PTR_AUTH_KERNEL */
    63. 

  63. 

  64. static inline void ptrauth_keys_install_user(struct ptrauth_keys_user *keys)
    65. 

  65. {
    66. 

  66. 	if (system_supports_address_auth()) {
    67. 

  67. 		__ptrauth_key_install_nosync(APIB, keys->apib);
    68. 

  68. 		__ptrauth_key_install_nosync(APDA, keys->apda);
    69. 

  69. 		__ptrauth_key_install_nosync(APDB, keys->apdb);
    70. 

  70. 	}
    71. 

  71. 

  72. 	if (system_supports_generic_auth())
    73. 

  73. 		__ptrauth_key_install_nosync(APGA, keys->apga);
    74. 

  74. }
    75. 

  75. 

  76. static inline void ptrauth_keys_init_user(struct ptrauth_keys_user *keys)
    77. 

  77. {
    78. 

  78. 	if (system_supports_address_auth()) {
    79. 

  79. 		get_random_bytes(&keys->apia, sizeof(keys->apia));
    80. 

  80. 		get_random_bytes(&keys->apib, sizeof(keys->apib));
    81. 

  81. 		get_random_bytes(&keys->apda, sizeof(keys->apda));
    82. 

  82. 		get_random_bytes(&keys->apdb, sizeof(keys->apdb));
    83. 

  83. 	}
    84. 

  84. 

  85. 	if (system_supports_generic_auth())
    86. 

  86. 		get_random_bytes(&keys->apga, sizeof(keys->apga));
    87. 

  87. 

  88. 	ptrauth_keys_install_user(keys);
    89. 

  89. }
    90. 

  90. 

  91. extern int ptrauth_prctl_reset_keys(struct task_struct *tsk, unsigned long arg);
    92. 

  92. 

  93. extern int ptrauth_set_enabled_keys(struct task_struct *tsk, unsigned long keys,
    94. 

  94. 				    unsigned long enabled);
    95. 

  95. extern int ptrauth_get_enabled_keys(struct task_struct *tsk);
    96. 

  96. 

  97. static inline unsigned long ptrauth_strip_insn_pac(unsigned long ptr)
    98. 

  98. {
    99. 

  99. 	return ptrauth_clear_pac(ptr);
    100. 

  100. }
    101. 

  101. 

  102. static __always_inline void ptrauth_enable(void)
    103. 

  103. {
    104. 

  104. 	if (!system_supports_address_auth())
    105. 

  105. 		return;
    106. 

  106. 	sysreg_clear_set(sctlr_el1, 0, (SCTLR_ELx_ENIA | SCTLR_ELx_ENIB |
    107. 

  107. 					SCTLR_ELx_ENDA | SCTLR_ELx_ENDB));
    108. 

  108. 	isb();
    109. 

  109. }
    110. 

  110. 

  111. #define ptrauth_suspend_exit()                                                 \
    112. 

  112. 	ptrauth_keys_install_user(&current->thread.keys_user)
    113. 

  113. 

  114. #define ptrauth_thread_init_user()                                             \
    115. 

  115. 	do {                                                                   \
    116. 

  116. 		ptrauth_keys_init_user(&current->thread.keys_user);            \
    117. 

  117. 									       \
    118. 

  118. 		/* enable all keys */                                          \
    119. 

  119. 		if (system_supports_address_auth())                            \
    120. 

  120. 			set_task_sctlr_el1(current->thread.sctlr_user |        \
    121. 

  121. 					   SCTLR_ELx_ENIA | SCTLR_ELx_ENIB |   \
    122. 

  122. 					   SCTLR_ELx_ENDA | SCTLR_ELx_ENDB);   \
    123. 

  123. 	} while (0)
    124. 

  124. 

  125. #define ptrauth_thread_switch_user(tsk)                                        \
    126. 

  126. 	ptrauth_keys_install_user(&(tsk)->thread.keys_user)
    127. 

  127. 

  128. #else /* CONFIG_ARM64_PTR_AUTH */
    129. 

  129. #define ptrauth_enable()
    130. 

  130. #define ptrauth_prctl_reset_keys(tsk, arg)	(-EINVAL)
    131. 

  131. #define ptrauth_set_enabled_keys(tsk, keys, enabled)	(-EINVAL)
    132. 

  132. #define ptrauth_get_enabled_keys(tsk)	(-EINVAL)
    133. 

  133. #define ptrauth_strip_insn_pac(lr)	(lr)
    134. 

  134. #define ptrauth_suspend_exit()
    135. 

  135. #define ptrauth_thread_init_user()
    136. 

  136. #define ptrauth_thread_switch_user(tsk)
    137. 

  137. #endif /* CONFIG_ARM64_PTR_AUTH */
    138. 

  138. 

  139. #ifdef CONFIG_ARM64_PTR_AUTH_KERNEL
    140. 

  140. #define ptrauth_thread_init_kernel(tsk)					\
    141. 

  141. 	ptrauth_keys_init_kernel(&(tsk)->thread.keys_kernel)
    142. 

  142. #define ptrauth_thread_switch_kernel(tsk)				\
    143. 

  143. 	ptrauth_keys_switch_kernel(&(tsk)->thread.keys_kernel)
    144. 

  144. #else
    145. 

  145. #define ptrauth_thread_init_kernel(tsk)
    146. 

  146. #define ptrauth_thread_switch_kernel(tsk)
    147. 

  147. #endif /* CONFIG_ARM64_PTR_AUTH_KERNEL */
    148. 

  148. 

  149. #define PR_PAC_ENABLED_KEYS_MASK                                               \
    150. 

  150. 	(PR_PAC_APIAKEY | PR_PAC_APIBKEY | PR_PAC_APDAKEY | PR_PAC_APDBKEY)
    151. 

  151. 

  152. #endif /* __ASM_POINTER_AUTH_H */
    153. 

  153.