git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/commit

author	Will Deacon <will.deacon@arm.com>
	Wed, 6 Dec 2017 11:24:02 +0000 (11:24 +0000)
committer	Kleber Sacilotto de Souza <kleber.souza@canonical.com>
	Wed, 7 Mar 2018 11:13:50 +0000 (12:13 +0100)
commit	16c8879609aecc838a17181a48e1a13d8f47c5d2
tree	e47c0cb913cb36ed82962523d6559884ac886a44	tree
parent	95ba85b5498c50e59b0660d3c25d0a26b28098c0	commit \| diff

arm64: kaslr: Put kernel vectors address in separate data page

Commit 6c27c4082f4f upstream.

The literal pool entry for identifying the vectors base is the only piece
of information in the trampoline page that identifies the true location
of the kernel.

This patch moves it into a page-aligned region of the .rodata section
and maps this adjacent to the trampoline text via an additional fixmap
entry, which protects against any accidental leakage of the trampoline
contents.

Suggested-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Tested-by: Laura Abbott <labbott@redhat.com>
Tested-by: Shanker Donthineni <shankerd@codeaurora.org>
Signed-off-by: Will Deacon <will.deacon@arm.com>
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
(cherry picked from commit 3882b5f63f3cfff225cee691dcb8357bf6714d07)

CVE-2017-5753
CVE-2017-5715
CVE-2017-5754

Signed-off-by: Paolo Pisati <paolo.pisati@canonical.com>
Acked-by: Brad Figg <brad.figg@canonical.com>
Acked-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
Acked-by: Thadeu Lima de Souza Cascardo <cascardo@canonical.com>
Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>

arch/arm64/include/asm/fixmap.h		diff \| blob \| blame \| history
arch/arm64/kernel/entry.S		diff \| blob \| blame \| history
arch/arm64/kernel/vmlinux.lds.S		diff \| blob \| blame \| history
arch/arm64/mm/mmu.c		diff \| blob \| blame \| history