[10/11] linux-user/aarch64: Reset btype for signal handlers

Message ID	20190110121736.23448-11-richard.henderson@linaro.org
State	New
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: domain of qemu-devel-bounces+patch=linaro.org@nongnu.org designates 209.51.188.17 as permitted sender) client-ip=209.51.188.17; From: Richard Henderson <richard.henderson@linaro.org> To: qemu-devel@nongnu.org Date: Thu, 10 Jan 2019 23:17:35 +1100 Message-Id: <20190110121736.23448-11-richard.henderson@linaro.org> In-Reply-To: <20190110121736.23448-1-richard.henderson@linaro.org> References: <20190110121736.23448-1-richard.henderson@linaro.org> Subject: [Qemu-devel] [PATCH 10/11] linux-user/aarch64: Reset btype for signal handlers Precedence: list Cc: peter.maydell@linaro.org Errors-To: qemu-devel-bounces+patch=linaro.org@nongnu.org Sender: "Qemu-devel" <qemu-devel-bounces+patch=linaro.org@nongnu.org>
Series	target/arm: Implement ARMv8.5-BTI \| expand [00/11] target/arm: Implement ARMv8.5-BTI [01/11] target/arm: Introduce isar_feature_aa64_bti [02/11] target/arm: Add PSTATE.BTYPE [03/11] target/arm: Add BT and BTYPE to tb->flags [04/11] target/arm: Record the GP bit for a page in MemTxAttrs [05/11] target/arm: Default handling of BTYPE during translation [06/11] target/arm: Reset btype for direct branches and syscalls [07/11] target/arm: Set btype for indirect branches [08/11] target/arm: Add guarded_pages cpu property for user-only [09/11] target/arm: Enable BTI for -cpu max [10/11] linux-user/aarch64: Reset btype for signal handlers [11/11] tests/tcg/aarch64: Add bti smoke test

Message ID

20190110121736.23448-11-richard.henderson@linaro.org

State

New

Headers

Received-SPF: pass (google.com: domain of
	qemu-devel-bounces+patch=linaro.org@nongnu.org designates
	209.51.188.17 as permitted sender) client-ip=209.51.188.17; 
From: Richard Henderson <richard.henderson@linaro.org>
To: qemu-devel@nongnu.org
Date: Thu, 10 Jan 2019 23:17:35 +1100
Message-Id: <20190110121736.23448-11-richard.henderson@linaro.org>
In-Reply-To: <20190110121736.23448-1-richard.henderson@linaro.org>
References: <20190110121736.23448-1-richard.henderson@linaro.org>
Subject: [Qemu-devel] [PATCH 10/11] linux-user/aarch64: Reset btype for
	signal handlers
Precedence: list
Cc: peter.maydell@linaro.org
Errors-To: qemu-devel-bounces+patch=linaro.org@nongnu.org
Sender: "Qemu-devel" <qemu-devel-bounces+patch=linaro.org@nongnu.org>

Series

target/arm: Implement ARMv8.5-BTI | expand

Commit Message

Richard Henderson Jan. 10, 2019, 12:17 p.m. UTC

It does not make sense for a SIGILL handler to enter with the
btype set as for the indirect branch that caused the SIGILL.

Nor does it make sense to return from a handler with BTYPE set.
This could be argued to be the handler's job, setting BTYPE
within ucontext->uc_mcontext.pstate, but handling this here
while the ABI is undiscussed.

Signed-off-by: Richard Henderson <richard.henderson@linaro.org>

---
 linux-user/aarch64/signal.c | 4 ++++
 1 file changed, 4 insertions(+)

-- 
2.17.2

Comments

Peter Maydell Jan. 22, 2019, 3:46 p.m. UTC | #1

On Thu, 10 Jan 2019 at 12:18, Richard Henderson
<richard.henderson@linaro.org> wrote:
>

> It does not make sense for a SIGILL handler to enter with the

> btype set as for the indirect branch that caused the SIGILL.

>

> Nor does it make sense to return from a handler with BTYPE set.

> This could be argued to be the handler's job, setting BTYPE

> within ucontext->uc_mcontext.pstate, but handling this here

> while the ABI is undiscussed.

>

> Signed-off-by: Richard Henderson <richard.henderson@linaro.org>

> ---

>  linux-user/aarch64/signal.c | 4 ++++

>  1 file changed, 4 insertions(+)

>

> diff --git a/linux-user/aarch64/signal.c b/linux-user/aarch64/signal.c

> index f84a9cf28a..1fb229e696 100644

> --- a/linux-user/aarch64/signal.c

> +++ b/linux-user/aarch64/signal.c

> @@ -218,6 +218,8 @@ static void target_restore_general_frame(CPUARMState *env,

>      __get_user(env->pc, &sf->uc.tuc_mcontext.pc);

>      __get_user(pstate, &sf->uc.tuc_mcontext.pstate);

>      pstate_write(env, pstate);

> +    /* Reset btype that might have been there going into the frame.  */

> +    env->btype = 0;


Conceptually we should do this the way the kernel would, by
sanitizing the value of "pstate" before passing it to
pstate_write(). This is done in valid_native_regs() in
arch/arm64/kernel/ptrace.c and forbids other things like
messing with the DAIF bits or the mode bits.

>  }

>

>  static void target_restore_fpsimd_record(CPUARMState *env,

> @@ -510,6 +512,8 @@ static void target_setup_frame(int usig, struct target_sigaction *ka,

>      env->xregs[29] = frame_addr + fr_ofs;

>      env->pc = ka->_sa_handler;

>      env->xregs[30] = return_addr;

> +    /* Reset btype going into the signal handler.  */

> +    env->btype = 0;

>      if (info) {

>          tswap_siginfo(&frame->info, info);

>          env->xregs[1] = frame_addr + offsetof(struct target_rt_sigframe, info);

> --

> 2.17.2


thanks
-- PMM

diff --git a/linux-user/aarch64/signal.c b/linux-user/aarch64/signal.c
index f84a9cf28a..1fb229e696 100644
--- a/linux-user/aarch64/signal.c
+++ b/linux-user/aarch64/signal.c
@@ -218,6 +218,8 @@  static void target_restore_general_frame(CPUARMState *env,
     __get_user(env->pc, &sf->uc.tuc_mcontext.pc);
     __get_user(pstate, &sf->uc.tuc_mcontext.pstate);
     pstate_write(env, pstate);
+    /* Reset btype that might have been there going into the frame.  */
+    env->btype = 0;
 }
 
 static void target_restore_fpsimd_record(CPUARMState *env,
@@ -510,6 +512,8 @@  static void target_setup_frame(int usig, struct target_sigaction *ka,
     env->xregs[29] = frame_addr + fr_ofs;
     env->pc = ka->_sa_handler;
     env->xregs[30] = return_addr;
+    /* Reset btype going into the signal handler.  */
+    env->btype = 0;
     if (info) {
         tswap_siginfo(&frame->info, info);
         env->xregs[1] = frame_addr + offsetof(struct target_rt_sigframe, info);

[10/11] linux-user/aarch64: Reset btype for signal handlers

Commit Message

Comments

Patch