[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 1/3] xen: common: add ability to enable stack protector

To: Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>
From: Julien Grall <julien@xxxxxxx>
Date: Mon, 25 Nov 2024 20:36:22 +0000
Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Samuel Thibault <samuel.thibault@xxxxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>
Delivery-date: Mon, 25 Nov 2024 20:36:33 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Hi,

Hi Volodymyr,

On 22/11/2024 21:07, Volodymyr Babchuk wrote:

diff --git a/xen/include/xen/stack_protector.h 
b/xen/include/xen/stack_protector.h
new file mode 100644
index 0000000000..97f1eb5ac0
--- /dev/null
+++ b/xen/include/xen/stack_protector.h
@@ -0,0 +1,30 @@
+/* SPDX-License-Identifier: GPL-2.0-only */
+
+#ifndef XEN__STACK_PROTECTOR_H
+#define XEN__STACK_PROTECTOR_H
+
+#ifdef CONFIG_STACKPROTECTOR
+
+#ifndef CONFIG_X86
+extern unsigned long __stack_chk_guard;

Is this variable meant to change after boot? If not, then can you tag itwith __ro_after_init?

+#endif
+
+/*
+ * This function should be always inlined. Also it should be called
+ * from a function that never returns.
+ */
+static inline void boot_stack_chk_guard_setup(void)
+{
+       __stack_chk_guard = get_random();
+       if (BITS_PER_LONG == 64)
+               __stack_chk_guard |= ((unsigned long)get_random()) << 32;
+}
+
+#else
+
+static inline void boot_stack_chk_guard_setup(void) {}
+
+#endif /* CONFIG_STACKPROTECTOR  */
+
+#endif /* XEN__STACK_PROTECTOR_H */
+


Cheers,

--
Julien Grall

Follow-Ups:
- Re: [PATCH 1/3] xen: common: add ability to enable stack protector
  - From: Volodymyr Babchuk

References:
- [PATCH 0/3] Add stack protector
  - From: Volodymyr Babchuk
- [PATCH 1/3] xen: common: add ability to enable stack protector
  - From: Volodymyr Babchuk

Prev by Date: Re: [PATCH v7 11/11] Arm: purge ENTRY(), ENDPROC(), and ALIGN
Next by Date: Re: [PATCH v3 6/7] page-alloc: make scrub_one_page() static
Previous by thread: Re: [PATCH 1/3] xen: common: add ability to enable stack protector
Next by thread: Re: [PATCH 1/3] xen: common: add ability to enable stack protector
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.