From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <hjl.tools@gmail.com>
Received: from mail-io1-xd44.google.com (mail-io1-xd44.google.com
 [IPv6:2607:f8b0:4864:20::d44])
 by sourceware.org (Postfix) with ESMTPS id CC97D395CC4D
 for <libc-alpha@sourceware.org>; Sat, 16 May 2020 16:37:56 +0000 (GMT)
DMARC-Filter: OpenDMARC Filter v1.3.2 sourceware.org CC97D395CC4D
Received: by mail-io1-xd44.google.com with SMTP id e18so5969145iog.9
 for <libc-alpha@sourceware.org>; Sat, 16 May 2020 09:37:56 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to:cc;
 bh=ldOy3LcNar3U7MbDeMUx0a9eyRjT7da9bREmD6/O1L8=;
 b=ECjDANLU/wEJiHyQ9+P+9vKE39LA1f1JkaxDnsVOFdgYLuz1gNrkURMicrzepZQAZ6
 TzyR8cZqRwTLZGC9TaVSMdg5klmHkxh/4T3u2uNetUyMzKET4J9wB+Vq1r6GISci3zJy
 AW7h4gSkWByTzpqRhdcq9sa9a8eNSjALXkCAjdAPFNczpFnL/5pMSO3h83M1kB7u7JGN
 GOCSfcwkitR2bqgg9Z9JbVQoA1LpsiU/QYc59yXX3sKTKGb7Q6ZUnyNOjUfjokgscHxi
 B1zgx/j6bYkz/zSbdbEWPckcRYSf9jx7q0C4B6SJQbxA9wK302YfgP0i75uCgvzqLVDZ
 NbcQ==
X-Gm-Message-State: AOAM5320jyGdFluHCSOQfxQuTrjPoHqTGI3GfHjKMlww7VPBYofKWLmG
 Vc3EyPMm8/w5MWrOwrtE6GEZ4S73srq9OY41rzJGXw==
X-Google-Smtp-Source: ABdhPJzlvEyCg09Vu/+gDREuXvpdUOCwau+n+Sdcf1jj7c0/5eZ9To8352JUI2duQbUAC21j3CB2rQVwIP5BpeyfFjs=
X-Received: by 2002:a05:6602:26d5:: with SMTP id
 g21mr7516613ioo.91.1589647076068; 
 Sat, 16 May 2020 09:37:56 -0700 (PDT)
MIME-Version: 1.0
References: <20200428215243.236312-1-hjl.tools@gmail.com>
 <20200428215243.236312-2-hjl.tools@gmail.com>
In-Reply-To: <20200428215243.236312-2-hjl.tools@gmail.com>
From: "H.J. Lu" <hjl.tools@gmail.com>
Date: Sat, 16 May 2020 09:37:20 -0700
Message-ID: <CAMe9rOp-5fsaaXGWhUXycP1QX+j7TofS30vh+A66uZ49RhoTYg@mail.gmail.com>
Subject: PING: [PATCH 1/3] CET: Rename CET_MAX to CET_CONTROL_MASK [BZ #25887]
To: GNU C Library <libc-alpha@sourceware.org>,
 "Carlos O'Donell" <carlos@redhat.com>
Cc: Florian Weimer <fweimer@redhat.com>
Content-Type: text/plain; charset="UTF-8"
X-Spam-Status: No, score=1.2 required=5.0 tests=BAYES_00, DKIM_SIGNED,
 DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, FREEMAIL_FROM, GIT_PATCH_0,
 KAM_SHORT, RCVD_IN_DNSWL_NONE, SPF_HELO_NONE, SPF_PASS, TXREP,
 UNWANTED_LANGUAGE_BODY autolearn=ham autolearn_force=no version=3.4.2
X-Spam-Level: *
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
 server2.sourceware.org
X-BeenThere: libc-alpha@sourceware.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Libc-alpha mailing list <libc-alpha.sourceware.org>
List-Unsubscribe: <http://sourceware.org/mailman/options/libc-alpha>,
 <mailto:libc-alpha-request@sourceware.org?subject=unsubscribe>
List-Archive: <https://sourceware.org/pipermail/libc-alpha/>
List-Post: <mailto:libc-alpha@sourceware.org>
List-Help: <mailto:libc-alpha-request@sourceware.org?subject=help>
List-Subscribe: <http://sourceware.org/mailman/listinfo/libc-alpha>,
 <mailto:libc-alpha-request@sourceware.org?subject=subscribe>
X-List-Received-Date: Sat, 16 May 2020 16:37:58 -0000

On Tue, Apr 28, 2020 at 2:52 PM H.J. Lu <hjl.tools@gmail.com> wrote:
>
> _dl_x86_feature_1[1] is used to control each CET feature, IBT and SHSTK:
>
>  /* Valid control values:
>     0: Enable CET features based on ELF property note.
>     1: Always disable CET features.
>     2: Always enable CET features.
>     3: Enable CET features permissively.
>   */
>  #define CET_ELF_PROPERTY       0
>  #define CET_ALWAYS_OFF         1
>  #define CET_ALWAYS_ON          2
>  #define CET_PERMISSIVE         3
>  #define CET_MAX                CET_PERMISSIVE
>
> CET control value takes 2 bits.  Rename CET_MAX to CET_CONTROL_MASK.  Add
> CET_IBT_SHIFT and CET_SHSTK_SHIFT.
> ---
>  sysdeps/x86/cet-tunables.h | 22 +++++++++++++++++++--
>  sysdeps/x86/cpu-features.c |  7 +++----
>  sysdeps/x86/cpu-tunables.c | 39 +++++++++++++++-----------------------
>  sysdeps/x86/dl-cet.c       |  6 ++----
>  4 files changed, 40 insertions(+), 34 deletions(-)
>
> diff --git a/sysdeps/x86/cet-tunables.h b/sysdeps/x86/cet-tunables.h
> index 5e1e42df10..0088b89d3e 100644
> --- a/sysdeps/x86/cet-tunables.h
> +++ b/sysdeps/x86/cet-tunables.h
> @@ -16,14 +16,32 @@
>     License along with the GNU C Library; if not, see
>     <https://www.gnu.org/licenses/>.  */
>
> -/* Valid control values:
> +#ifndef _CET_TUNABLES_H
> +#define _CET_TUNABLES_H
> +
> +/* For each CET feature, IBT and SHSTK, valid control values:
>     0: Enable CET features based on ELF property note.
>     1: Always disable CET features.
>     2: Always enable CET features.
>     3: Enable CET features permissively.
> +
> +   Bits 0-1: IBT
> +   Bits 2-3: SHSTK
>   */
>  #define CET_ELF_PROPERTY       0
>  #define CET_ALWAYS_OFF         1
>  #define CET_ALWAYS_ON          2
>  #define CET_PERMISSIVE         3
> -#define CET_MAX                        CET_PERMISSIVE
> +#define CET_CONTROL_MASK       3
> +#define CET_IBT_SHIFT          0
> +#define CET_SHSTK_SHIFT                2
> +
> +/* Get CET control value.  */
> +
> +static inline unsigned int
> +get_cet_control_value (unsigned int shift)
> +{
> +  return (GL(dl_x86_feature_1)[1] >> shift) & CET_CONTROL_MASK;
> +}
> +
> +#endif /* cet-tunables.h */
> diff --git a/sysdeps/x86/cpu-features.c b/sysdeps/x86/cpu-features.c
> index 81a170a819..76a6476607 100644
> --- a/sysdeps/x86/cpu-features.c
> +++ b/sysdeps/x86/cpu-features.c
> @@ -594,10 +594,9 @@ no_cpuid:
>             }
>
>           /* Lock CET if IBT or SHSTK is enabled in executable.  Don't
> -            lock CET if SHSTK is enabled permissively.  */
> -         if (((GL(dl_x86_feature_1)[1] >> CET_MAX)
> -              & ((1 << CET_MAX) - 1))
> -              != CET_PERMISSIVE)
> +            lock CET if IBT or SHSTK is enabled permissively.  */
> +         if (get_cet_control_value (CET_IBT_SHIFT) != CET_PERMISSIVE
> +             && get_cet_control_value (CET_SHSTK_SHIFT) != CET_PERMISSIVE)
>             dl_cet_lock_cet ();
>         }
>  # endif
> diff --git a/sysdeps/x86/cpu-tunables.c b/sysdeps/x86/cpu-tunables.c
> index 861bd7bcaa..c8fc5e67d9 100644
> --- a/sysdeps/x86/cpu-tunables.c
> +++ b/sysdeps/x86/cpu-tunables.c
> @@ -338,26 +338,26 @@ TUNABLE_CALLBACK (set_hwcaps) (tunable_val_t *valp)
>  # if CET_ENABLED
>  #  include <cet-tunables.h>
>
> +/* Set CET control value.  */
> +
> +static inline void
> +set_cet_control_value (unsigned int value, unsigned int shift)
> +{
> +   GL(dl_x86_feature_1)[1] &= ~(CET_CONTROL_MASK << shift);
> +   GL(dl_x86_feature_1)[1] |= value << shift;
> +}
> +
>  attribute_hidden
>  void
>  TUNABLE_CALLBACK (set_x86_ibt) (tunable_val_t *valp)
>  {
>    if (DEFAULT_MEMCMP (valp->strval, "on", sizeof ("on")) == 0)
> -    {
> -      GL(dl_x86_feature_1)[1] &= ~((1 << CET_MAX) - 1);
> -      GL(dl_x86_feature_1)[1] |= CET_ALWAYS_ON;
> -    }
> +    set_cet_control_value (CET_ALWAYS_ON, CET_IBT_SHIFT);
>    else if (DEFAULT_MEMCMP (valp->strval, "off", sizeof ("off")) == 0)
> -    {
> -      GL(dl_x86_feature_1)[1] &= ~((1 << CET_MAX) - 1);
> -      GL(dl_x86_feature_1)[1] |= CET_ALWAYS_OFF;
> -    }
> +    set_cet_control_value (CET_ALWAYS_OFF, CET_IBT_SHIFT);
>    else if (DEFAULT_MEMCMP (valp->strval, "permissive",
>                            sizeof ("permissive")) == 0)
> -    {
> -      GL(dl_x86_feature_1)[1] &= ~((1 << CET_MAX) - 1);
> -      GL(dl_x86_feature_1)[1] |= CET_PERMISSIVE;
> -    }
> +    set_cet_control_value (CET_PERMISSIVE, CET_IBT_SHIFT);
>  }
>
>  attribute_hidden
> @@ -365,21 +365,12 @@ void
>  TUNABLE_CALLBACK (set_x86_shstk) (tunable_val_t *valp)
>  {
>    if (DEFAULT_MEMCMP (valp->strval, "on", sizeof ("on")) == 0)
> -    {
> -      GL(dl_x86_feature_1)[1] &= ~(((1 << CET_MAX) - 1) << CET_MAX);
> -      GL(dl_x86_feature_1)[1] |= (CET_ALWAYS_ON << CET_MAX);
> -    }
> +    set_cet_control_value (CET_ALWAYS_ON, CET_SHSTK_SHIFT);
>    else if (DEFAULT_MEMCMP (valp->strval, "off", sizeof ("off")) == 0)
> -    {
> -      GL(dl_x86_feature_1)[1] &= ~(((1 << CET_MAX) - 1) << CET_MAX);
> -      GL(dl_x86_feature_1)[1] |= (CET_ALWAYS_OFF << CET_MAX);
> -    }
> +    set_cet_control_value (CET_ALWAYS_OFF, CET_SHSTK_SHIFT);
>    else if (DEFAULT_MEMCMP (valp->strval, "permissive",
>                            sizeof ("permissive")) == 0)
> -    {
> -      GL(dl_x86_feature_1)[1] &= ~(((1 << CET_MAX) - 1) << CET_MAX);
> -      GL(dl_x86_feature_1)[1] |= (CET_PERMISSIVE << CET_MAX);
> -    }
> +    set_cet_control_value (CET_PERMISSIVE, CET_SHSTK_SHIFT);
>  }
>  # endif
>  #endif
> diff --git a/sysdeps/x86/dl-cet.c b/sysdeps/x86/dl-cet.c
> index c7029f1b51..0f115540aa 100644
> --- a/sysdeps/x86/dl-cet.c
> +++ b/sysdeps/x86/dl-cet.c
> @@ -39,11 +39,9 @@ static void
>  dl_cet_check (struct link_map *m, const char *program)
>  {
>    /* Check how IBT should be enabled.  */
> -  unsigned int enable_ibt_type
> -    = GL(dl_x86_feature_1)[1] & ((1 << CET_MAX) - 1);
> +  unsigned int enable_ibt_type = get_cet_control_value (CET_IBT_SHIFT);
>    /* Check how SHSTK should be enabled.  */
> -  unsigned int enable_shstk_type
> -    = ((GL(dl_x86_feature_1)[1] >> CET_MAX) & ((1 << CET_MAX) - 1));
> +  unsigned int enable_shstk_type = get_cet_control_value (CET_SHSTK_SHIFT);
>
>    /* No legacy object check if both IBT and SHSTK are always on.  */
>    if (enable_ibt_type == CET_ALWAYS_ON
> --
> 2.25.4
>

PING.

-- 
H.J.