From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 8410424501D;
	Thu, 13 Feb 2025 19:28:53 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1739474933; cv=none; b=DruzjHw/UPhV7btP6REj4Ao2WqTk8BhlS4oByhgGl3Y6h1ebT+ceW2UlJscKikHqjJbXTGoaUd7IoOXPGG7hBlGgADNxJOxQcCndKdQ4+NdFeuxNAV08LoKgtFDu9cde//avfbHhOh0eNidECfBiJpEu61tNXua4O5dqSMR3o5Y=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1739474933; c=relaxed/simple;
	bh=mibcqrVU2uUXKuhqlBMEkG07gDq9k41HSPc+WHje23Q=;
	h=Date:From:To:CC:Subject:In-Reply-To:References:Message-ID:
	 MIME-Version:Content-Type; b=Eto8Vx92GjwaocAfqFdOuWNDQ1NXQ+nIxQWBcr9uIeKV3F//ZF86qr82IG5thA55gNHupiJsEDEkTMxoRTbzc2nKMeR/vRsp/OOKbN4+6KzdktDk65EJryHnciTp9AAkTjokB9sDnRixwDHqiCcIBVcynwf/YWvzJJVtZFu6FD4=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=DTgs3Rm+; arc=none smtp.client-ip=10.30.226.201
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="DTgs3Rm+"
Received: by smtp.kernel.org (Postfix) with ESMTPSA id CB96AC4CED1;
	Thu, 13 Feb 2025 19:28:52 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=k20201202; t=1739474933;
	bh=mibcqrVU2uUXKuhqlBMEkG07gDq9k41HSPc+WHje23Q=;
	h=Date:From:To:CC:Subject:In-Reply-To:References:From;
	b=DTgs3Rm+nbOxlgfoiaTiQqBOE0wEmIf7hztGsSl1tGCzEJZyM/QgMjEuyb4JkqEQr
	 XSK5P9At+tJeEYTKaJ1ovatF7Tqa+U/dZxAQRtpd8UuFqwAEAnQqwC7HFYx3jFiVmd
	 /4vzpJ3/MJH1PlN0mzOoczIHvEfCYgsRC3aqLOsVdaAebBGsSqFuEy7nDSQmrkRqFo
	 8RArS1fDJCdW1y1F2ELajwZ5oevMr6QdDZes2tT5BHOsg1FYf2/MN9eZOBhQj7YIqn
	 mXScvbUF9GFt10DX05nyRFZexGzuSdYS3iLjYm4m+AirJb0c/aboS3/ZkfNXz4kZNX
	 D5u4JComVXO4g==
Date: Thu, 13 Feb 2025 11:28:50 -0800
From: Kees Cook <kees@kernel.org>
To: Jeff Xu <jeffxu@chromium.org>,
 =?ISO-8859-1?Q?Thomas_Wei=DFschuh?= <thomas.weissschuh@linutronix.de>
CC: akpm@linux-foundation.org, keescook@chromium.org, jannh@google.com,
 torvalds@linux-foundation.org, vbabka@suse.cz, lorenzo.stoakes@oracle.com,
 Liam.Howlett@oracle.com, adhemerval.zanella@linaro.org, oleg@redhat.com,
 avagin@gmail.com, benjamin@sipsolutions.net, linux-kernel@vger.kernel.org,
 linux-hardening@vger.kernel.org, linux-mm@kvack.org, jorgelo@chromium.org,
 sroettger@google.com, hch@lst.de, ojeda@kernel.org, adobriyan@gmail.com,
 johannes@sipsolutions.net, pedro.falcato@gmail.com, hca@linux.ibm.com,
 willy@infradead.org, anna-maria@linutronix.de, mark.rutland@arm.com,
 linus.walleij@linaro.org, Jason@zx2c4.com, deller@gmx.de,
 rdunlap@infradead.org, davem@davemloft.net, peterx@redhat.com,
 f.fainelli@gmail.com, gerg@kernel.org, dave.hansen@linux.intel.com,
 mingo@kernel.org, ardb@kernel.org, mhocko@suse.com, 42.hyeyoo@gmail.com,
 peterz@infradead.org, ardb@google.com, enh@google.com, rientjes@google.com,
 groeck@chromium.org, mpe@ellerman.id.au, aleksandr.mikhalitsyn@canonical.com,
 mike.rapoport@gmail.com
Subject: =?US-ASCII?Q?Re=3A_=5BRFC_PATCH_v5_2/7=5D_selftests=3A_x86=3A_t?=
 =?US-ASCII?Q?est=5Fmremap=5Fvdso=3A_skip_if_vdso_is_msealed?=
User-Agent: K-9 Mail for Android
In-Reply-To: <CABi2SkUCviiTbd1roeBiqSk98S87R1WwSP9rUYh4t3JfSD+2ZA@mail.gmail.com>
References: <20250212032155.1276806-1-jeffxu@google.com> <20250212032155.1276806-3-jeffxu@google.com> <20250212135000-861e6353-6e0a-43c3-9b28-649ae4dfc607@linutronix.de> <CABi2SkUCviiTbd1roeBiqSk98S87R1WwSP9rUYh4t3JfSD+2ZA@mail.gmail.com>
Message-ID: <35C0FD0B-0483-4663-AD60-701AB8D9247A@kernel.org>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain;
 charset=utf-8
Content-Transfer-Encoding: quoted-printable



On February 13, 2025 6:14:00 AM PST, Jeff Xu <jeffxu@chromium=2Eorg> wrote=
:
>On Wed, Feb 12, 2025 at 5:04=E2=80=AFAM Thomas Wei=C3=9Fschuh
><thomas=2Eweissschuh@linutronix=2Ede> wrote:
>>
>> On Wed, Feb 12, 2025 at 03:21:50AM +0000, jeffxu@chromium=2Eorg wrote:
>> > From: Jeff Xu <jeffxu@chromium=2Eorg>
>> >
>> > Add code to detect if the vdso is memory sealed, skip the test
>> > if it is=2E
>> >
>> > Signed-off-by: Jeff Xu <jeffxu@chromium=2Eorg>
>> > ---
>> >  =2E=2E=2E/testing/selftests/x86/test_mremap_vdso=2Ec  | 38 +++++++++=
++++++++++
>> >  1 file changed, 38 insertions(+)
>> >
>> > diff --git a/tools/testing/selftests/x86/test_mremap_vdso=2Ec b/tools=
/testing/selftests/x86/test_mremap_vdso=2Ec
>> > index d53959e03593=2E=2Ec68077c56b22 100644
>> > --- a/tools/testing/selftests/x86/test_mremap_vdso=2Ec
>> > +++ b/tools/testing/selftests/x86/test_mremap_vdso=2Ec
>> > @@ -14,6 +14,7 @@
>> >  #include <errno=2Eh>
>> >  #include <unistd=2Eh>
>> >  #include <string=2Eh>
>> > +#include <stdbool=2Eh>
>> >
>> >  #include <sys/mman=2Eh>
>> >  #include <sys/auxv=2Eh>
>> > @@ -55,13 +56,50 @@ static int try_to_remap(void *vdso_addr, unsigned=
 long size)
>> >
>> >  }
>> >
>> > +#define VDSO_NAME "[vdso]"
>> > +#define VMFLAGS "VmFlags:"
>> > +#define MSEAL_FLAGS "sl"
>> > +#define MAX_LINE_LEN 512
>> > +
>> > +bool vdso_sealed(FILE *maps)
>> > +{
>> > +     char line[MAX_LINE_LEN];
>> > +     bool has_vdso =3D false;
>> > +
>> > +     while (fgets(line, sizeof(line), maps)) {
>> > +             if (strstr(line, VDSO_NAME))
>> > +                     has_vdso =3D true;
>> > +
>> > +             if (has_vdso && !strncmp(line, VMFLAGS, strlen(VMFLAGS)=
)) {
>> > +                     if (strstr(line, MSEAL_FLAGS))
>> > +                             return true;
>> > +
>> > +                     return false;
>>
>> This only tests that any mapping after the vdso is sealed=2E
>
>The code above begins by searching for the "[vdso]" string, then looks
>for the first line that starts with "VmFlags:", and looks for the "sl"
>substring within that line=2E We're assuming the format of smaps won't
>change from release to release=2E

Oh, I missed this in my reviews: nothing _resets_ has_vdso to false, so if=
 any other mapping follows vdso that happens to be sealed, this will return=
 true=2E=2E=2E

>
>> There is a real parser for /proc/self/smaps in
>> tools/testing/selftests/mm/vm_util=2E[ch], see check_vmflag_io()=2E
>>
>This test is in selftest/x86, which makes it hard to include the
>vm_util from selftest/mm, if that's what you're asking=2E

Hm, we have done these kinds of inter-tests dependencies before=2E (E=2Eg=
=2E seccomp includes stuff from the clone tests=2E) I think it should be po=
ssible if it can just be a header include=2E Linking across tests would be =
more frustrating=2E

-Kees

--=20
Kees Cook