| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2wf4kmoqqmod6njviaq33lbxbx6gvdqbksljxykgltwnxo6ruy@7ueumwmxxh72>
Date: Thu, 6 Mar 2025 09:50:25 -0600
From: Maxwell Bland <mbland@...orola.com>
To: Kees Cook <kees@...nel.org>
Cc: linux-hardening@...r.kernel.org,
"Gustavo A. R. Silva" <gustavoars@...nel.org>,
linux-security-module@...r.kernel.org, Serge Hallyn <serge@...lyn.com>,
Mickaël Salaün <mic@...ikod.net>,
Paul Moore <paul@...l-moore.com>, James Morris <jmorris@...ei.org>,
linux-mm@...ck.org, Andrew Morton <akpm@...ux-foundation.org>,
Uladzislau Rezki <urezki@...il.com>,
Christoph Hellwig <hch@...radead.org>,
Lorenzo Stoakes <lstoakes@...il.com>,
Andrew Wheeler <awheeler@...orola.com>,
Sammy BS2 Que <quebs2@...orola.com>
Subject: Re: [RFC] Type-Partitioned vmalloc (with sample *.ko code)
On Mon, Mar 03, 2025 at 10:26:16AM -0800, Kees Cook wrote:
> On Fri, Feb 28, 2025 at 02:57:40PM -0600, Maxwell Bland wrote:
> > Summarizing, there are thousands of dynamic data structures alloc'd and
> > free'd in the kernel all the time, for files, for processes, and so
> > forth, and it is elementary to manipulate any instance of data, but hard
> > to protect every single one of them. These range from trng device
> > pointers to kworker queues---everything passing through vmalloc.
> >
> > - Reorganizing allocations of those structures so that they are on
> > the same 2MB hugepage, adjacently, as otherwise existing hardware
> > support to prevent their mutation (PTE flags) will trigger for unrelated
> > data allocated adjacently.
>
> This sounds like the "write rarely" proposal:
> https://github.com/KSPP/linux/issues/130
>
> which isolates chosen data structures into immutable memory, except for
> specific helpers which are allowed to write to the memory. This is
> needed most, by far, for page tables:
> https://lore.kernel.org/lkml/20250203101839.1223008-1-kevin.brodsky@arm.com/
Thank you for this pointer and the others below. I spent a lot of time
the past two days thinking about your email and the links.
> It looks from your example at the end that you're depending on a
> hypervisor to perform the memory protection and fault handling? Or maybe
> I'm misunderstanding where the protection is happening?
Correct. I use the fault handler, proper, though, and optimize it
through careful management of protected vs. unprotected resources, which
pushes me up against the problem of determining specific policies for
each type of kmalloc.
>
> > - Writing a handler to ensure non-malicious modifications, e.g. keeping
> > "const" fields const, ensuring modifications to other fields happen at
> > the right physical PC values and the right pages, handling atomic
> > updates so that the exception fault on these values maintains ordering
> > under race conditions (maybe "doubling up" on atomic assembly operations
> > due to certain microarch issues at the chipset level, see below), and so
> > on, and so forth.
>
> As I understand it, this depends on avoiding ROP attacks that will hijack
> those PC values. (This is generally true for the entire concept of
> "write rarely", though -- nothing specific to this implementation.)
I think a more general solution to this problem, leveraging the POE
mechanism (or just stage-2 translation tables), is to build something on
top of or around CFI. This is natural since the protections already
assume CFI for the data tagging. I can imagine some GCC plugin or
compiler pass for functions, which can appropriately inject
unlock/relock calls around "critical" functions (part of the paciasp
instrumentation).
In fact, I rewrote the QCOM SMC handler to ensure the lock/unlock
semantics were inlined into the specific data operation context, to
prevent creation of a privilege escalation callgate given a CFI bypass.
I attached the code for this at the end.
I will bring this and some other points up to Kevin.
> The current proposals use a method of gaining temporary write permission
> during the execution path of an approved writer (rather than doing it
> via the fault handler, which tends to be very expensive).
I've not found the fault handler approach to be too expensive, at least
for a system matching all current guarantees. Once we begin talking
about struct file's f_lock and every kmalloc, I am inclined to agree.
I think a fault handler based solution can still get a lot of distance
if frequently updated fields of structs were indirected through pointers
(and separate kmalloc calls).
One issue with the POE and other solutions I see is also a lack of
infrastructure for applying specific policies to updates on data
structures: it's one thing to lock the page table outside of
set_memory_rw, but another to ensure the arguments to that API are
not corrupted, e.g. overwriting plt->target here?
arch/arm64/net/bpf_jit_comp.c
2417: if (set_memory_rw(PAGE_MASK & ((uintptr_t)&plt->target),
> > I demonstrated something similar previously to prevent the intermixed
> > allocation of SECCOMP BPF code pages with data on ARM64's Android Kernel
> > here (with which you may be familiar):
> >
> > https://lore.kernel.org/all/20240423095843.446565600-1-mbland@motorola.com/
>
> Did this v4 go any further? I see earlier versions had some discussion
> around it.
No response, so I did not stress the issue (should I have?) I ended up
just hacking around Google's GKI, so upstreaming was no longer
necessary.
> in here... Do you mean to make a distinction between the allocators?
> Linux has 3 allocators: page(buddy), kmalloc(kmem), and vmalloc(vmap).
I guess so, though the vmalloc cases for swap and bpf are important:
void __always_inline patch_jump_to_handler(void *faddr, void *helper)
{
u32 insn;
insn = aarch64_insn_gen_branch_imm_ind((unsigned long)faddr,
(unsigned long)helper,
AARCH64_INSN_BRANCH_NOLINK);
aarch64_insn_patch_text_nosync_ind(faddr, insn);
}
...
/* This works since even though it is "inline", the function is not
* inlined, so we can kallsyms reference it and patch it */
void bpf_jit_binary_lock_ro_injector(struct bpf_binary_header *hdr)
{
/* set_vm_flush_reset_perms(hdr); */
struct vm_struct *vm = find_vm_area_ind((void *)hdr);
if (vm)
vm->flags |= VM_FLUSH_RESET_PERMS;
if (run_CVE_2021_33909) {
hdr->image[8] = 0x13;
hdr->image[9] = 0x37;
hdr->image[10] = 0x13;
hdr->image[11] = 0x37;
pr_info("LOCK RO HERE!\n");
run_CVE_2021_33909 = 0;
}
set_mem_ro((unsigned long)hdr, hdr->size >> PAGE_SHIFT);
set_mem_x((unsigned long)hdr, hdr->size >> PAGE_SHIFT);
}
> A dedicated kmem cache should live in its own page, so I don't think
> anything special is needed for things already using kmem_cache_create(),
> except that they must not be aliased with same-sized allocations. (i.e.
> include the SLAB_NO_MERGE flag.)
Hmm, I thought the write faults on allocated pages were from other types
of data, but maybe I made a mistake here, and it was actually other
`struct file`. This is good to know if true, thank you.
> Doing this automatically requires compiler support to provide a way to
> distinguish types from the lvalue of an expression:
>
> // kmalloc has no idea what type it will provide an allocation for
> struct whatever *p = kmalloc(...);
>
> Or, for the allocation system in the kernel to be totally rearranged to
> pass the variable into a helper so the type (and things like alignment)
> can be introspected. I proposed doing that here:
> https://lore.kernel.org/all/20240822231324.make.666-kees@kernel.org/
>
> It's unclear if this approach will be successful, and I've been waiting
> for compiler support of "counted_by" to be more widely usable.
>
> An alternative is to separate allocations by call site (rather than
> type). This has some performance benefits too, and requires no special
> compiler support. I proposed that here:
> https://lore.kernel.org/all/20240809072532.work.266-kees@kernel.org/
>
> With this in place, simple Use-After-Free type confusion is blocked,
> but not cross-cache attacks. To defend against cross-cache UAF attacks,
> full separation of the virtual memory spaces ("memory allocation pinning")
> is needed. SLAB_VIRTUAL has been proposed here:
> https://lore.kernel.org/lkml/20230915105933.495735-1-matteorizzo@google.com/
The above were super valuable! One insight that I've had, related to the
third link above is that if you do have a lock/unlock tracking based on
allocation/deallocation (the second link, or my file tracking from the
last email), you can get a KASAN-like UAF tracking, since if you see a
fault from a PC on a resource which has already trapped into the "free"
handler (and no corresponding alloc), then this can trip a fault.
Essentially, a hashmap tracking each page and associating it to the
current kmalloc type... but I think SLAB_VIRTUAL also achieves this by
preventing te reuse of that virtual page.
> > Please let me know if you've seen anything else discussing this problem,
> > particularly anything that might save me from having to rewrite the
> > virtual memory allocator in our OS to prevent these attacks.
>
> Hopefully some (all) of the proposals above should provide you with the
> desired coverage, though if you're doing this on arm64 you'll need to
> implement the arch-specific portions of SLAB_VIRTUAL on arm64.
Absolutely, from the above, I still have some concerns and see some
limits to these approaches, but your insight that alloc_tag.h can be
used for type tracking and security is valuable, and maybe I can see if
Google can enable it for Android 16 (if they have not already).
> > The patches/discussions here:
> > https://lore.kernel.org/all/rsk6wtj2ibtl5yygkxlwq3ibngtt5mwpnpjqsh6vz57lino6rs@rcohctmqugn3/
> > https://lore.kernel.org/all/994dce8b-08cb-474d-a3eb-3970028752e6@infradead.org/
>
> Has this moved forward? This got to a v5...
Similar case to the other patches, I didn't see much response, so did
not think I should really petition too hard for the changes, though they
are valuable for PXNTable enforcement.
I suppose no response to a patch does not mean it is dead.
> > https://lore.kernel.org/all/puj3euv5eafwcx5usqostpohmxgdeq3iout4hqnyk7yt5hcsux@gpiamodhfr54/
>
> I think Peter Zijlstra solved all the BPF KCFI interactions? See commit
> 4f9087f16651 ("x86/cfi,bpf: Fix BPF JIT call")
Only x86. I supposed the BPF maintainers would integrate my ARM change
coalescing via other means. I have not checked back, but will ping the
BPF list again if there's still the *_handler CFI bypasses in more
recent kernels.
Cheers and thanks,
Maxwell Bland
Appendix 1. Rewritten QCOM SMCs
/* calls the appropriate smc to associate an smc call location labeled by
* smc_call_tag_idiom with a tag in the hypervisor. QCOM won't let moto
* do atomic calls, BTW )-: */
#define add_el2_smc_tag(smc_label_name, tagtype) \
{ \
__asm__("mrs x0, daif\n" \
"orr x0, x0, #0xF\n" \
"msr daif, x0\n" \
"mov x3, x0\n" \
"sub x0, x0, x0\n" \
"movk x0, #0x0007\n" \
"movk x0, #0x" SMC_TYPE_NONATOMIC "300, lsl #16\n" \
"mov x1, 0\n" \
"adr x2, " #smc_label_name "\n" \
"mov x3, %0\n" \
"smc #0\n" \
"msr daif, x3\n" \
: \
: "r"((uint64_t)tagtype) \
: "x0", "x1", "x2", "x3"); \
}
/*
* Importantly, this idiom, and surrounding code, MUST INLINE to
* the function in question, otherwise we run the risk of tag
* allocation/deallocation being run via a CFI exploit. When
* it is introduced into the function in question itself, then
* it becomes possible to guarantee the surrounding code is
* valid, and we are not deallocating outside of the rest of
* the active kernel context.
*
* This makes it much harder for an adversary to "break" the
* system because they cannot just forge a function pointer
* to an arbitrary "unallocate tag" function, but must instead
* forge a function pointer/CFI tag using xxhash to the
* specific kernel operation being protected, and this
* should lead to a myriad of adjacent consequences and
* sanity checks.
*
* For example, in file_free_rcu, this means we have a strong
* guarantee that the SMC call will be followed by a call to
* put_cred, further cementing the necessary context for
* free'ing the file struct.
*/
#define smc_call_tag_idiom(smc_type, smc_tag, smcid, res, arg, size) \
{ \
__asm__ __volatile__( \
"movz x0, #0x000" smcid "\n" \
"movk x0, #0x" smc_type \
"300, lsl #16\n" \
"mov x1, 0\n" \
"mov x2, %1\n" \
"mov x3, %2\n" \
"stp x29, x30, [sp, #-16]!\n" \
"mov x29, sp\n" smc_tag ":\n" \
"smc #0\n" \
"ldp x29, x30, [sp], #16\n" \
"mov %0, x0\n" \
: "=r"(res) \
: "r"(arg), "r"(size) \
: "x0", "x1", "x2", "x3"); \
}
static void __always_inline depreempt_sleep(void)
{
uint64_t preempt_count_val = preempt_count();
preempt_count_sub(preempt_count_val);
msleep(30);
preempt_count_add(preempt_count_val);
}
/* TODO: these need proper synchronization, not just msleep */
#define qcom_smc_waitloop(smc_tag, smcid_tag, arg, size) \
{ \
uint64_t smc_res = 0; \
do { \
if (smc_res) \
depreempt_sleep(); \
smc_call_tag_idiom(SMC_TYPE_NONATOMIC, smc_tag, \
smcid_tag, smc_res, arg, size); \
} while (smc_res); \
__asm__ __volatile__("dmb sy; dsb sy; isb;"); \
}
#define qcom_smc_waitloop_nosleep(smc_tag, smcid_tag, arg, size) \
{ \
uint64_t smc_res = 0; \
do { \
if (smc_res) \
mdelay(30); \
smc_call_tag_idiom(SMC_TYPE_NONATOMIC, smc_tag, \
smcid_tag, smc_res, arg, size); \
} while (smc_res); \
__asm__ __volatile__("dmb sy; dsb sy; isb;"); \
}
#define qcom_smc_waitloop_mayfail(smc_tag, smcid_tag, arg, size) \
{ \
uint64_t smc_res = 0; \
smc_call_tag_idiom(SMC_TYPE_NONATOMIC, smc_tag, \
smcid_tag, smc_res, arg, size); \
__asm__ __volatile__("dmb sy; dsb sy; isb;"); \
}
Powered by blists - more mailing lists