Home Explore Help
Register Sign In
Apq
/
pve-edge-kernel
mirror of https://github.com/fabianishere/pve-edge-kernel.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 7c7389df50
Branches Tags
pve-edge-kernel
/
patches
/
kernel
/
0164-x86-mm-dump_pagetables-Check-PAGE_PRESENT-for-real.patch

0164-x86-mm-dump_pagetables-Check-PAGE_PRESENT-for-real.patch 2.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556 
  1. From d54a0500d55a2856efdea3b427e91d8fcf74ca63 Mon Sep 17 00:00:00 2001
    2. 

  2. From: Thomas Gleixner <[email protected]>
    3. 

  3. Date: Sat, 16 Dec 2017 01:14:39 +0100
    4. 

  4. Subject: [PATCH 164/232] x86/mm/dump_pagetables: Check PAGE_PRESENT for real
    5. 

  5. MIME-Version: 1.0
    6. 

  6. Content-Type: text/plain; charset=UTF-8
    7. 

  7. Content-Transfer-Encoding: 8bit
    8. 

  8. 

  9. CVE-2017-5754
    10. 

  10. 

  11. The check for a present page in printk_prot():
    12. 

  12. 

  13.        if (!pgprot_val(prot)) {
    14. 

  14.                 /* Not present */
    15. 

  15. 

  16. is bogus. If a PTE is set to PAGE_NONE then the pgprot_val is not zero and
    17. 

  17. the entry is decoded in bogus ways, e.g. as RX GLB. That is confusing when
    18. 

  18. analyzing mapping correctness. Check for the present bit to make an
    19. 

  19. informed decision.
    20. 

  20. 

  21. Signed-off-by: Thomas Gleixner <[email protected]>
    22. 

  22. Cc: Andy Lutomirski <[email protected]>
    23. 

  23. Cc: Borislav Petkov <[email protected]>
    24. 

  24. Cc: Dave Hansen <[email protected]>
    25. 

  25. Cc: H. Peter Anvin <[email protected]>
    26. 

  26. Cc: Josh Poimboeuf <[email protected]>
    27. 

  27. Cc: Juergen Gross <[email protected]>
    28. 

  28. Cc: Linus Torvalds <[email protected]>
    29. 

  29. Cc: Peter Zijlstra <[email protected]>
    30. 

  30. Cc: [email protected]
    31. 

  31. Signed-off-by: Ingo Molnar <[email protected]>
    32. 

  32. (cherry picked from commit c05344947b37f7cda726e802457370bc6eac4d26)
    33. 

  33. Signed-off-by: Andy Whitcroft <[email protected]>
    34. 

  34. Signed-off-by: Kleber Sacilotto de Souza <[email protected]>
    35. 

  35. (cherry picked from commit d902780eaea12f23b50be4ff00f8df6157c30e4a)
    36. 

  36. Signed-off-by: Fabian Grünbichler <[email protected]>
    37. 

  37. ---
    38. 

  38.  arch/x86/mm/dump_pagetables.c | 2 +-
    39. 

  39.  1 file changed, 1 insertion(+), 1 deletion(-)
    40. 

  40. 

  41. diff --git a/arch/x86/mm/dump_pagetables.c b/arch/x86/mm/dump_pagetables.c
    42. 

  42. index 0470826d2bdc..91aa41c5e0dd 100644
    43. 

  43. --- a/arch/x86/mm/dump_pagetables.c
    44. 

  44. +++ b/arch/x86/mm/dump_pagetables.c
    45. 

  45. @@ -140,7 +140,7 @@ static void printk_prot(struct seq_file *m, pgprot_t prot, int level, bool dmsg)
    46. 

  46.  	static const char * const level_name[] =
    47. 

  47.  		{ "cr3", "pgd", "pud", "pmd", "pte" };
    48. 

  48.  
    49. 

  49. -	if (!pgprot_val(prot)) {
    50. 

  50. +	if (!(pr & _PAGE_PRESENT)) {
    51. 

  51.  		/* Not present */
    52. 

  52.  		pt_dump_cont_printf(m, dmsg, "                              ");
    53. 

  53.  	} else {
    54. 

  54. -- 
    55. 

  55. 2.14.2
    56. 

  56.