git.proxmox.com Git - mirror_ubuntu-jammy-kernel.git/commit

author	Catalin Marinas <catalin.marinas@arm.com>
	Thu, 3 Mar 2022 18:00:44 +0000 (18:00 +0000)
committer	Paolo Pisati <paolo.pisati@canonical.com>
	Wed, 23 Mar 2022 10:49:04 +0000 (11:49 +0100)
commit	7de0536be7db254872ed7e2b7890d64e540e0fe6
tree	8dbafaf4d527a8018202e8612aca16bace616f40	tree
parent	8732809ec51fb0103cc6ef3d6343c87feed81487	commit \| diff

arm64: Ensure execute-only permissions are not allowed without EPAN

BugLink: https://bugs.launchpad.net/bugs/1966056
commit 6e2edd6371a497a6350bb735534c9bda2a31f43d upstream.

Commit 18107f8a2df6 ("arm64: Support execute-only permissions with
Enhanced PAN") re-introduced execute-only permissions when EPAN is
available. When EPAN is not available, arch_filter_pgprot() is supposed
to change a PAGE_EXECONLY permission into PAGE_READONLY_EXEC. However,
if BTI or MTE are present, such check does not detect the execute-only
pgprot in the presence of PTE_GP (BTI) or MT_NORMAL_TAGGED (MTE),
allowing the user to request PROT_EXEC with PROT_BTI or PROT_MTE.

Remove the arch_filter_pgprot() function, change the default VM_EXEC
permissions to PAGE_READONLY_EXEC and update the protection_map[] array
at core_initcall() if EPAN is detected.

Signed-off-by: Catalin Marinas <catalin.marinas@arm.com>
Fixes: 18107f8a2df6 ("arm64: Support execute-only permissions with Enhanced PAN")
Cc: <stable@vger.kernel.org> # 5.13.x
Acked-by: Will Deacon <will@kernel.org>
Reviewed-by: Vladimir Murzin <vladimir.murzin@arm.com>
Tested-by: Vladimir Murzin <vladimir.murzin@arm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Paolo Pisati <paolo.pisati@canonical.com>

arch/arm64/Kconfig		diff \| blob \| blame \| history
arch/arm64/include/asm/pgtable-prot.h		diff \| blob \| blame \| history
arch/arm64/include/asm/pgtable.h		diff \| blob \| blame \| history
arch/arm64/mm/mmap.c		diff \| blob \| blame \| history