mirror of https://github.com/torvalds/linux.git
7a9b709e7c
Below are the tests added for Indirect Target Selection (ITS): - its_sysfs.py - Check if sysfs reflects the correct mitigation status for the mitigation selected via the kernel cmdline. - its_permutations.py - tests mitigation selection with cmdline permutations with other bugs like spectre_v2 and retbleed. - its_indirect_alignment.py - verifies that for addresses in .retpoline_sites section that belong to lower half of cacheline are patched to ITS-safe thunk. Typical output looks like below: Site 49: function symbol: __x64_sys_restart_syscall+0x1f <0xffffffffbb1509af> # vmlinux: 0xffffffff813509af: jmp 0xffffffff81f5a8e0 # kcore: 0xffffffffbb1509af: jmpq *%rax # ITS thunk NOT expected for site 49 # PASSED: Found *%rax # Site 50: function symbol: __resched_curr+0xb0 <0xffffffffbb181910> # vmlinux: 0xffffffff81381910: jmp 0xffffffff81f5a8e0 # kcore: 0xffffffffbb181910: jmp 0xffffffffc02000fc # ITS thunk expected for site 50 # PASSED: Found 0xffffffffc02000fc -> jmpq *%rax <scattered-thunk?> - its_ret_alignment.py - verifies that for addresses in .return_sites section that belong to lower half of cacheline are patched to its_return_thunk. Typical output looks like below: Site 97: function symbol: collect_event+0x48 <0xffffffffbb007f18> # vmlinux: 0xffffffff81207f18: jmp 0xffffffff81f5b500 # kcore: 0xffffffffbb007f18: jmp 0xffffffffbbd5b560 # PASSED: Found jmp 0xffffffffbbd5b560 <its_return_thunk> # Site 98: function symbol: collect_event+0xa4 <0xffffffffbb007f74> # vmlinux: 0xffffffff81207f74: jmp 0xffffffff81f5b500 # kcore: 0xffffffffbb007f74: retq # PASSED: Found retq Some of these tests have dependency on tools like virtme-ng[1] and drgn[2]. When the dependencies are not met, the test will be skipped. [1] https://github.com/arighi/virtme-ng [2] https://github.com/osandov/drgn Co-developed-by: Tao Zhang <tao1.zhang@linux.intel.com> Signed-off-by: Tao Zhang <tao1.zhang@linux.intel.com> Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com> Signed-off-by: Dave Hansen <dave.hansen@linux.intel.com> |
||
|---|---|---|
| .. | ||
| bugs | ||
| .gitignore | ||
| Makefile | ||
| amx.c | ||
| avx.c | ||
| check_cc.sh | ||
| check_initial_reg_state.c | ||
| clang_helpers_32.S | ||
| clang_helpers_64.S | ||
| corrupt_xstate_header.c | ||
| entry_from_vm86.c | ||
| fsgsbase.c | ||
| fsgsbase_restore.c | ||
| helpers.h | ||
| ioperm.c | ||
| iopl.c | ||
| lam.c | ||
| ldt_gdt.c | ||
| mov_ss_trap.c | ||
| nx_stack.c | ||
| ptrace_syscall.c | ||
| raw_syscall_helper_32.S | ||
| sigaltstack.c | ||
| sigreturn.c | ||
| single_step_syscall.c | ||
| srso.c | ||
| syscall_arg_fault.c | ||
| syscall_nt.c | ||
| syscall_numbering.c | ||
| sysret_rip.c | ||
| sysret_ss_attrs.c | ||
| test_FCMOV.c | ||
| test_FCOMI.c | ||
| test_FISTTP.c | ||
| test_mremap_vdso.c | ||
| test_shadow_stack.c | ||
| test_syscall_vdso.c | ||
| test_vsyscall.c | ||
| thunks.S | ||
| thunks_32.S | ||
| trivial_32bit_program.c | ||
| trivial_64bit_program.c | ||
| trivial_program.c | ||
| unwind_vdso.c | ||
| vdso_restorer.c | ||
| xstate.c | ||
| xstate.h | ||