git.proxmox.com Git - mirror_edk2.git/commit - MdeModulePkg/Core/Dxe/Misc/MemoryProtection.c

author	Ard Biesheuvel <ard.biesheuvel@linaro.org>
	Fri, 24 Feb 2017 14:51:33 +0000 (14:51 +0000)
committer	Ard Biesheuvel <ard.biesheuvel@linaro.org>
	Tue, 28 Feb 2017 15:01:10 +0000 (15:01 +0000)
commit	7eb927db3e25afdda1a5c5458c54bb79afc5bc8f
tree	898a85433c2d6ca6dae86d0e78d8157694c34ae2	tree
parent	973e388af2f8f35dce3aaa924a0372eedceeba96	commit \| diff

MdeModulePkg/DxeCore: implement memory protection policy

This implements a DXE memory protection policy that ensures that regions
that don't require executable permissions are mapped with the non-exec
attribute set.

First of all, it iterates over all entries in the UEFI memory map, and
removes executable permissions according to the configured DXE memory
protection policy, as recorded in PcdDxeNxMemoryProtectionPolicy.

Secondly, it sets or clears the non-executable attribute when allocating
or freeing pages, both for page based or pool based allocations.

Note that this complements the image protection facility, which applies
strict permissions to BootServicesCode/RuntimeServicesCode regions when
the section alignment allows it. The memory protection configured by this
patch operates on non-code regions only.

Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Reviewed-by: Jiewen Yao <jiewen.yao@intel.com>
Reviewed-by: Liming Gao <liming.gao@intel.com>

MdeModulePkg/Core/Dxe/DxeMain.h		diff \| blob \| blame \| history
MdeModulePkg/Core/Dxe/DxeMain.inf		diff \| blob \| blame \| history
MdeModulePkg/Core/Dxe/Mem/Page.c		diff \| blob \| blame \| history
MdeModulePkg/Core/Dxe/Mem/Pool.c		diff \| blob \| blame \| history
MdeModulePkg/Core/Dxe/Misc/MemoryProtection.c		diff \| blob \| blame \| history