diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2012-10-01 16:59:17 -0400 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2012-10-01 16:59:17 -0400 |
| commit | 15385dfe7e0fa6866b204dd0d14aec2cc48fc0a7 (patch) | |
| tree | 3ddcb000ec3b82f672fa892e8e44b1be4a5ebb33 /arch/x86/kernel/signal.c | |
| parent | a57d985e378ca69f430b85852e4187db3698a89e (diff) | |
| parent | b2cc2a074de75671bbed5e2dda67a9252ef353ea (diff) | |
Merge branch 'x86-smap-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
Pull x86/smap support from Ingo Molnar:
"This adds support for the SMAP (Supervisor Mode Access Prevention) CPU
feature on Intel CPUs: a hardware feature that prevents unintended
user-space data access from kernel privileged code.
It's turned on automatically when possible.
This, in combination with SMEP, makes it even harder to exploit kernel
bugs such as NULL pointer dereferences."
Fix up trivial conflict in arch/x86/kernel/entry_64.S due to newly added
includes right next to each other.
* 'x86-smap-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip:
x86, smep, smap: Make the switching functions one-way
x86, suspend: On wakeup always initialize cr4 and EFER
x86-32: Start out eflags and cr4 clean
x86, smap: Do not abuse the [f][x]rstor_checking() functions for user space
x86-32, smap: Add STAC/CLAC instructions to 32-bit kernel entry
x86, smap: Reduce the SMAP overhead for signal handling
x86, smap: A page fault due to SMAP is an oops
x86, smap: Turn on Supervisor Mode Access Prevention
x86, smap: Add STAC and CLAC instructions to control user space access
x86, uaccess: Merge prototypes for clear_user/__clear_user
x86, smap: Add a header file with macros for STAC/CLAC
x86, alternative: Add header guards to <asm/alternative-asm.h>
x86, alternative: Use .pushsection/.popsection
x86, smap: Add CR4 bit for SMAP
x86-32, mm: The WP test should be done on a kernel page
Diffstat (limited to 'arch/x86/kernel/signal.c')
| -rw-r--r-- | arch/x86/kernel/signal.c | 24 |
1 files changed, 14 insertions, 10 deletions
diff --git a/arch/x86/kernel/signal.c b/arch/x86/kernel/signal.c index 3160c26db5e7..b33144c8b309 100644 --- a/arch/x86/kernel/signal.c +++ b/arch/x86/kernel/signal.c | |||
| @@ -114,11 +114,12 @@ int restore_sigcontext(struct pt_regs *regs, struct sigcontext __user *sc, | |||
| 114 | regs->orig_ax = -1; /* disable syscall checks */ | 114 | regs->orig_ax = -1; /* disable syscall checks */ |
| 115 | 115 | ||
| 116 | get_user_ex(buf, &sc->fpstate); | 116 | get_user_ex(buf, &sc->fpstate); |
| 117 | err |= restore_xstate_sig(buf, config_enabled(CONFIG_X86_32)); | ||
| 118 | 117 | ||
| 119 | get_user_ex(*pax, &sc->ax); | 118 | get_user_ex(*pax, &sc->ax); |
| 120 | } get_user_catch(err); | 119 | } get_user_catch(err); |
| 121 | 120 | ||
| 121 | err |= restore_xstate_sig(buf, config_enabled(CONFIG_X86_32)); | ||
| 122 | |||
| 122 | return err; | 123 | return err; |
| 123 | } | 124 | } |
| 124 | 125 | ||
| @@ -355,7 +356,6 @@ static int __setup_rt_frame(int sig, struct k_sigaction *ka, siginfo_t *info, | |||
| 355 | put_user_ex(sig, &frame->sig); | 356 | put_user_ex(sig, &frame->sig); |
| 356 | put_user_ex(&frame->info, &frame->pinfo); | 357 | put_user_ex(&frame->info, &frame->pinfo); |
| 357 | put_user_ex(&frame->uc, &frame->puc); | 358 | put_user_ex(&frame->uc, &frame->puc); |
| 358 | err |= copy_siginfo_to_user(&frame->info, info); | ||
| 359 | 359 | ||
| 360 | /* Create the ucontext. */ | 360 | /* Create the ucontext. */ |
| 361 | if (cpu_has_xsave) | 361 | if (cpu_has_xsave) |
| @@ -367,9 +367,6 @@ static int __setup_rt_frame(int sig, struct k_sigaction *ka, siginfo_t *info, | |||
| 367 | put_user_ex(sas_ss_flags(regs->sp), | 367 | put_user_ex(sas_ss_flags(regs->sp), |
| 368 | &frame->uc.uc_stack.ss_flags); | 368 | &frame->uc.uc_stack.ss_flags); |
| 369 | put_user_ex(current->sas_ss_size, &frame->uc.uc_stack.ss_size); | 369 | put_user_ex(current->sas_ss_size, &frame->uc.uc_stack.ss_size); |
| 370 | err |= setup_sigcontext(&frame->uc.uc_mcontext, fpstate, | ||
| 371 | regs, set->sig[0]); | ||
| 372 | err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set)); | ||
| 373 | 370 | ||
| 374 | /* Set up to return from userspace. */ | 371 | /* Set up to return from userspace. */ |
| 375 | restorer = VDSO32_SYMBOL(current->mm->context.vdso, rt_sigreturn); | 372 | restorer = VDSO32_SYMBOL(current->mm->context.vdso, rt_sigreturn); |
| @@ -386,6 +383,11 @@ static int __setup_rt_frame(int sig, struct k_sigaction *ka, siginfo_t *info, | |||
| 386 | */ | 383 | */ |
| 387 | put_user_ex(*((u64 *)&rt_retcode), (u64 *)frame->retcode); | 384 | put_user_ex(*((u64 *)&rt_retcode), (u64 *)frame->retcode); |
| 388 | } put_user_catch(err); | 385 | } put_user_catch(err); |
| 386 | |||
| 387 | err |= copy_siginfo_to_user(&frame->info, info); | ||
| 388 | err |= setup_sigcontext(&frame->uc.uc_mcontext, fpstate, | ||
| 389 | regs, set->sig[0]); | ||
| 390 | err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set)); | ||
| 389 | 391 | ||
| 390 | if (err) | 392 | if (err) |
| 391 | return -EFAULT; | 393 | return -EFAULT; |
| @@ -434,8 +436,6 @@ static int __setup_rt_frame(int sig, struct k_sigaction *ka, siginfo_t *info, | |||
| 434 | put_user_ex(sas_ss_flags(regs->sp), | 436 | put_user_ex(sas_ss_flags(regs->sp), |
| 435 | &frame->uc.uc_stack.ss_flags); | 437 | &frame->uc.uc_stack.ss_flags); |
| 436 | put_user_ex(me->sas_ss_size, &frame->uc.uc_stack.ss_size); | 438 | put_user_ex(me->sas_ss_size, &frame->uc.uc_stack.ss_size); |
| 437 | err |= setup_sigcontext(&frame->uc.uc_mcontext, fp, regs, set->sig[0]); | ||
| 438 | err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set)); | ||
| 439 | 439 | ||
| 440 | /* Set up to return from userspace. If provided, use a stub | 440 | /* Set up to return from userspace. If provided, use a stub |
| 441 | already in userspace. */ | 441 | already in userspace. */ |
| @@ -448,6 +448,9 @@ static int __setup_rt_frame(int sig, struct k_sigaction *ka, siginfo_t *info, | |||
| 448 | } | 448 | } |
| 449 | } put_user_catch(err); | 449 | } put_user_catch(err); |
| 450 | 450 | ||
| 451 | err |= setup_sigcontext(&frame->uc.uc_mcontext, fp, regs, set->sig[0]); | ||
| 452 | err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set)); | ||
| 453 | |||
| 451 | if (err) | 454 | if (err) |
| 452 | return -EFAULT; | 455 | return -EFAULT; |
| 453 | 456 | ||
| @@ -504,9 +507,6 @@ static int x32_setup_rt_frame(int sig, struct k_sigaction *ka, | |||
| 504 | &frame->uc.uc_stack.ss_flags); | 507 | &frame->uc.uc_stack.ss_flags); |
| 505 | put_user_ex(current->sas_ss_size, &frame->uc.uc_stack.ss_size); | 508 | put_user_ex(current->sas_ss_size, &frame->uc.uc_stack.ss_size); |
| 506 | put_user_ex(0, &frame->uc.uc__pad0); | 509 | put_user_ex(0, &frame->uc.uc__pad0); |
| 507 | err |= setup_sigcontext(&frame->uc.uc_mcontext, fpstate, | ||
| 508 | regs, set->sig[0]); | ||
| 509 | err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set)); | ||
| 510 | 510 | ||
| 511 | if (ka->sa.sa_flags & SA_RESTORER) { | 511 | if (ka->sa.sa_flags & SA_RESTORER) { |
| 512 | restorer = ka->sa.sa_restorer; | 512 | restorer = ka->sa.sa_restorer; |
| @@ -518,6 +518,10 @@ static int x32_setup_rt_frame(int sig, struct k_sigaction *ka, | |||
| 518 | put_user_ex(restorer, &frame->pretcode); | 518 | put_user_ex(restorer, &frame->pretcode); |
| 519 | } put_user_catch(err); | 519 | } put_user_catch(err); |
| 520 | 520 | ||
| 521 | err |= setup_sigcontext(&frame->uc.uc_mcontext, fpstate, | ||
| 522 | regs, set->sig[0]); | ||
| 523 | err |= __copy_to_user(&frame->uc.uc_sigmask, set, sizeof(*set)); | ||
| 524 | |||
| 521 | if (err) | 525 | if (err) |
| 522 | return -EFAULT; | 526 | return -EFAULT; |
| 523 | 527 | ||