Home Explore Help
Register Sign In
Apq
/
pve-edge-kernel
mirror of https://github.com/fabianishere/pve-edge-kernel.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 633c5ed17f
Branches Tags
pve-edge-kernel
/
patches
/
kernel
/
0200-x86-mm-pti-Share-entry-text-PMD.patch

0200-x86-mm-pti-Share-entry-text-PMD.patch 2.4 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. From 9b8667a59df870d8f965d6681cb18843302c8510 Mon Sep 17 00:00:00 2001
    2. 

  2. From: Thomas Gleixner <[email protected]>
    3. 

  3. Date: Mon, 4 Dec 2017 15:07:47 +0100
    4. 

  4. Subject: [PATCH 200/242] x86/mm/pti: Share entry text PMD
    5. 

  5. MIME-Version: 1.0
    6. 

  6. Content-Type: text/plain; charset=UTF-8
    7. 

  7. Content-Transfer-Encoding: 8bit
    8. 

  8. 

  9. CVE-2017-5754
    10. 

  10. 

  11. Share the entry text PMD of the kernel mapping with the user space
    12. 

  12. mapping. If large pages are enabled this is a single PMD entry and at the
    13. 

  13. point where it is copied into the user page table the RW bit has not been
    14. 

  14. cleared yet. Clear it right away so the user space visible map becomes RX.
    15. 

  15. 

  16. Signed-off-by: Thomas Gleixner <[email protected]>
    17. 

  17. Cc: Andy Lutomirski <[email protected]>
    18. 

  18. Cc: Boris Ostrovsky <[email protected]>
    19. 

  19. Cc: Borislav Petkov <[email protected]>
    20. 

  20. Cc: Brian Gerst <[email protected]>
    21. 

  21. Cc: Dave Hansen <[email protected]>
    22. 

  22. Cc: David Laight <[email protected]>
    23. 

  23. Cc: Denys Vlasenko <[email protected]>
    24. 

  24. Cc: Eduardo Valentin <[email protected]>
    25. 

  25. Cc: Greg KH <[email protected]>
    26. 

  26. Cc: H. Peter Anvin <[email protected]>
    27. 

  27. Cc: Josh Poimboeuf <[email protected]>
    28. 

  28. Cc: Juergen Gross <[email protected]>
    29. 

  29. Cc: Linus Torvalds <[email protected]>
    30. 

  30. Cc: Peter Zijlstra <[email protected]>
    31. 

  31. Cc: Will Deacon <[email protected]>
    32. 

  32. Cc: [email protected]
    33. 

  33. Cc: [email protected]
    34. 

  34. Cc: [email protected]
    35. 

  35. Cc: [email protected]
    36. 

  36. Signed-off-by: Ingo Molnar <[email protected]>
    37. 

  37. (cherry picked from commit 6dc72c3cbca0580642808d677181cad4c6433893)
    38. 

  38. Signed-off-by: Andy Whitcroft <[email protected]>
    39. 

  39. Signed-off-by: Kleber Sacilotto de Souza <[email protected]>
    40. 

  40. (cherry picked from commit ee98d7446b4a7c12a57a38b1a5f51e3df0ac2cf3)
    41. 

  41. Signed-off-by: Fabian Grünbichler <[email protected]>
    42. 

  42. ---
    43. 

  43.  arch/x86/mm/pti.c | 10 ++++++++++
    44. 

  44.  1 file changed, 10 insertions(+)
    45. 

  45. 

  46. diff --git a/arch/x86/mm/pti.c b/arch/x86/mm/pti.c
    47. 

  47. index 59290356f19f..0e78797650a7 100644
    48. 

  48. --- a/arch/x86/mm/pti.c
    49. 

  49. +++ b/arch/x86/mm/pti.c
    50. 

  50. @@ -287,6 +287,15 @@ static void __init pti_clone_user_shared(void)
    51. 

  51.  	pti_clone_p4d(CPU_ENTRY_AREA_BASE);
    52. 

  52.  }
    53. 

  53.  
    54. 

  54. +/*
    55. 

  55. + * Clone the populated PMDs of the entry and irqentry text and force it RO.
    56. 

  56. + */
    57. 

  57. +static void __init pti_clone_entry_text(void)
    58. 

  58. +{
    59. 

  59. +	pti_clone_pmds((unsigned long) __entry_text_start,
    60. 

  60. +			(unsigned long) __irqentry_text_end, _PAGE_RW);
    61. 

  61. +}
    62. 

  62. +
    63. 

  63.  /*
    64. 

  64.   * Initialize kernel page table isolation
    65. 

  65.   */
    66. 

  66. @@ -298,4 +307,5 @@ void __init pti_init(void)
    67. 

  67.  	pr_info("enabled\n");
    68. 

  68.  
    69. 

  69.  	pti_clone_user_shared();
    70. 

  70. +	pti_clone_entry_text();
    71. 

  71.  }
    72. 

  72. -- 
    73. 

  73. 2.14.2
    74. 

  74.