git.proxmox.com Git - mirror_ubuntu-jammy-kernel.git/commit

author	Peter Collingbourne <pcc@google.com>
	Mon, 8 Aug 2022 12:53:21 +0000 (13:53 +0100)
committer	Stefan Bader <stefan.bader@canonical.com>
	Fri, 16 Sep 2022 08:53:52 +0000 (10:53 +0200)
commit	0629c791486225db8269ca90ca115cc851e3fb78
tree	55c14937ac1bf0b57d31a55363501919d0a348aa	tree
parent	4f60f534f666b78d9fcc6f168fa8e71b9fd9a5dd	commit \| diff

arm64: set UXN on swapper page tables

BugLink: https://bugs.launchpad.net/bugs/1989221
[ This issue was fixed upstream by accident in c3cee924bd85 ("arm64:
  head: cover entire kernel image in initial ID map") as part of a
  large refactoring of the arm64 boot flow. This simple fix is therefore
  preferred for -stable backporting ]

On a system that implements FEAT_EPAN, read/write access to the idmap
is denied because UXN is not set on the swapper PTEs. As a result,
idmap_kpti_install_ng_mappings panics the kernel when accessing
__idmap_kpti_flag. Fix it by setting UXN on these PTEs.

Fixes: 18107f8a2df6 ("arm64: Support execute-only permissions with Enhanced PAN")
Cc: <stable@vger.kernel.org> # 5.15
Link: https://linux-review.googlesource.com/id/Ic452fa4b4f74753e54f71e61027e7222a0fae1b1
Signed-off-by: Peter Collingbourne <pcc@google.com>
Acked-by: Will Deacon <will@kernel.org>
Cc: Ard Biesheuvel <ardb@kernel.org>
Cc: Catalin Marinas <catalin.marinas@arm.com>
Link: https://lore.kernel.org/r/20220719234909.1398992-1-pcc@google.com
Signed-off-by: Will Deacon <will@kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Kamal Mostafa <kamal@canonical.com>
Signed-off-by: Stefan Bader <stefan.bader@canonical.com>

arch/arm64/include/asm/kernel-pgtable.h		diff \| blob \| blame \| history
arch/arm64/kernel/head.S		diff \| blob \| blame \| history