static-keys 0.8.2

Reimplement Linux kernel static keys for Rust userland applications.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93

//! Linux-specific implementations

use crate::{JumpEntry, code_manipulate::CodeManipulator};

// See https://sourceware.org/binutils/docs/as/Section.html
/// Name and attribute of section storing jump entries
#[doc(hidden)]
#[macro_export]
macro_rules! os_static_key_sec_name_attr {
    () => {
        "__static_keys, \"awR\""
    };
}

// See https://sourceware.org/binutils/docs/ld/Input-Section-Example.html, modern linkers
// will generate these two symbols indicating the start and end address of __static_keys
// section. Note that the end address is excluded.
unsafe extern "Rust" {
    /// Address of this static is the start address of __static_keys section
    #[link_name = "__start___static_keys"]
    pub static mut JUMP_ENTRY_START: JumpEntry;
    /// Address of this static is the end address of __static_keys section (excluded)
    #[link_name = "__stop___static_keys"]
    pub static mut JUMP_ENTRY_STOP: JumpEntry;
}

/// Arch-specific [`CodeManipulator`] using [`libc`] with `mprotect`.
pub struct ArchCodeManipulator;

impl CodeManipulator for ArchCodeManipulator {
    /// Due to limitation of Linux, we cannot get the original memory protection flags easily
    /// without parsing `/proc/[pid]/maps`. As a result, we just make the code region non-writable.
    unsafe fn write_code<const L: usize>(addr: *mut core::ffi::c_void, data: &[u8; L]) {
        // TODO: page_size can be initialized once
        let page_size = unsafe { libc::sysconf(libc::_SC_PAGESIZE) as usize };
        let aligned_addr_val = (addr as usize) / page_size * page_size;
        let aligned_addr = aligned_addr_val as *mut core::ffi::c_void;
        let aligned_length = if (addr as usize) + L - aligned_addr_val > page_size {
            page_size * 2
        } else {
            page_size
        };

        // Create a temp mmap, which will store updated content of corresponding pages
        let mmaped_addr = unsafe {
            libc::mmap(
                core::ptr::null_mut(),
                aligned_length,
                libc::PROT_READ | libc::PROT_WRITE,
                libc::MAP_PRIVATE | libc::MAP_ANONYMOUS,
                -1,
                0,
            )
        };
        if mmaped_addr == libc::MAP_FAILED {
            panic!("Failed to create temp mappings");
        }
        unsafe {
            let addr_in_mmap = mmaped_addr.offset(addr.offset_from(aligned_addr));
            core::ptr::copy_nonoverlapping(aligned_addr, mmaped_addr, aligned_length);
            core::ptr::copy_nonoverlapping(data.as_ptr(), addr_in_mmap.cast(), L);
        }
        let res = unsafe {
            libc::mprotect(
                mmaped_addr,
                aligned_length,
                libc::PROT_READ | libc::PROT_EXEC,
            )
        };
        if res != 0 {
            panic!("Unable to make mmaped mapping executable.");
        }
        // Remap the created temp mmaping to replace old mapping
        let res = unsafe {
            libc::mremap(
                mmaped_addr,
                aligned_length,
                aligned_length,
                libc::MREMAP_MAYMOVE | libc::MREMAP_FIXED,
                // Any previous mapping at the address range specified by new_address and new_size is unmapped.
                // So, no memory leak
                aligned_addr,
            )
        };
        if res == libc::MAP_FAILED {
            panic!("Failed to mremap.");
        }
        let res = unsafe { clear_cache::clear_cache(addr, addr.add(L)) };
        if !res {
            panic!("Failed to clear cache.");
        }
    }
}