[S390] Remove data execution protection

The noexec support on s390 does not rely on a bit in the page table entry but utilizes the secondary space mode to distinguish between memory accesses for instructions vs. data. The noexec code relies on the assumption that the cpu will always use the secondary space page table for data accesses while it is running in the secondary space mode. Up to the z9-109 class machines this has been the case. Unfortunately this is not true anymore with z10 and later machines. The load-relative-long instructions lrl, lgrl and lgfrl access the memory operand using the same addressing-space mode that has been used to fetch the instruction. This breaks the noexec mode for all user space binaries compiled with march=z10 or later. The only option is to remove the current noexec support. Signed-off-by: Martin Schwidefsky <schwidefsky@de.ibm.com>
author: Martin Schwidefsky <schwidefsky@de.ibm.com> 2011-05-23 04:24:23 -0400
committer: Martin Schwidefsky <schwidefsky@de.ibm.com> 2011-05-23 04:24:28 -0400
commit: 043d07084b5347a26eab0a07aa13a4a929ad9e71 (patch)
tree: 13c2a902ccb2ecb779722c8b81ada32d242760c8 /arch/s390/mm/fault.c
parent: 9bf05098ce34e68a9e15f09ad6cdfea4ed64057a (diff)
1 files changed, 0 insertions, 39 deletions
diff --git a/arch/s390/mm/fault.c b/arch/s390/mm/fault.c
index ab988135e5c6..177745c520ca 100644
--- a/arch/s390/mm/fault.c
+++ b/arch/s390/mm/fault.c
@@ -225,33 +225,6 @@ static noinline void do_sigbus(struct pt_regs *regs, long int_code,
        force_sig_info(SIGBUS, &si, tsk);
 }
-#ifdef CONFIG_S390_EXEC_PROTECT
-static noinline int signal_return(struct pt_regs *regs, long int_code,
-                                  unsigned long trans_exc_code)
-{
-        u16 instruction;
-        int rc;
-        rc = __get_user(instruction, (u16 __user *) regs->psw.addr);
-        if (!rc && instruction == 0x0a77) {
-                clear_tsk_thread_flag(current, TIF_PER_TRAP);
-                if (is_compat_task())
-                        sys32_sigreturn();
-                else
-                        sys_sigreturn();
-        } else if (!rc && instruction == 0x0aad) {
-                clear_tsk_thread_flag(current, TIF_PER_TRAP);
-                if (is_compat_task())
-                        sys32_rt_sigreturn();
-                else
-                        sys_rt_sigreturn();
-        } else
-                do_sigsegv(regs, int_code, SEGV_MAPERR, trans_exc_code);
-        return 0;
-}
-#endif /* CONFIG_S390_EXEC_PROTECT */
 static noinline void do_fault_error(struct pt_regs *regs, long int_code,
                                    unsigned long trans_exc_code, int fault)
 {
@@ -259,13 +232,6 @@ static noinline void do_fault_error(struct pt_regs *regs, long int_code,
        switch (fault) {
        case VM_FAULT_BADACCESS:
-#ifdef CONFIG_S390_EXEC_PROTECT
-                if ((regs->psw.mask & PSW_MASK_ASC) == PSW_ASC_SECONDARY &&
-                    (trans_exc_code & 3) == 0) {
-                        signal_return(regs, int_code, trans_exc_code);
-                        break;
-                }
-#endif /* CONFIG_S390_EXEC_PROTECT */
        case VM_FAULT_BADMAP:
                /* Bad memory access. Check if it is kernel or user space. */
                if (regs->psw.mask & PSW_MASK_PSTATE) {
@@ -414,11 +380,6 @@ void __kprobes do_dat_exception(struct pt_regs *regs, long pgm_int_code,
        int access, fault;
        access = VM_READ | VM_EXEC | VM_WRITE;
-#ifdef CONFIG_S390_EXEC_PROTECT
-        if ((regs->psw.mask & PSW_MASK_ASC) == PSW_ASC_SECONDARY &&
-            (trans_exc_code & 3) == 0)
-                access = VM_EXEC;
-#endif
        fault = do_exception(regs, access, trans_exc_code);
        if (unlikely(fault))
                do_fault_error(regs, pgm_int_code & 255, trans_exc_code, fault);
author	Martin Schwidefsky <schwidefsky@de.ibm.com>	2011-05-23 04:24:23 -0400
committer	Martin Schwidefsky <schwidefsky@de.ibm.com>	2011-05-23 04:24:28 -0400
commit	043d07084b5347a26eab0a07aa13a4a929ad9e71 (patch)
tree	13c2a902ccb2ecb779722c8b81ada32d242760c8 /arch/s390/mm/fault.c
parent	9bf05098ce34e68a9e15f09ad6cdfea4ed64057a (diff)

diff --git a/arch/s390/mm/fault.c b/arch/s390/mm/fault.c index ab988135e5c6..177745c520ca 100644 --- a/arch/s390/mm/fault.c +++ b/arch/s390/mm/fault.c
@@ -225,33 +225,6 @@ static noinline void do_sigbus(struct pt_regs *regs, long int_code,
225	force_sig_info(SIGBUS, &si, tsk);	225	force_sig_info(SIGBUS, &si, tsk);
226	}	226	}
227		227
228	#ifdef CONFIG_S390_EXEC_PROTECT
229	static noinline int signal_return(struct pt_regs *regs, long int_code,
230	unsigned long trans_exc_code)
231	{
232	u16 instruction;
233	int rc;
234
235	rc = __get_user(instruction, (u16 __user *) regs->psw.addr);
236
237	if (!rc && instruction == 0x0a77) {
238	clear_tsk_thread_flag(current, TIF_PER_TRAP);
239	if (is_compat_task())
240	sys32_sigreturn();
241	else
242	sys_sigreturn();
243	} else if (!rc && instruction == 0x0aad) {
244	clear_tsk_thread_flag(current, TIF_PER_TRAP);
245	if (is_compat_task())
246	sys32_rt_sigreturn();
247	else
248	sys_rt_sigreturn();
249	} else
250	do_sigsegv(regs, int_code, SEGV_MAPERR, trans_exc_code);
251	return 0;
252	}
253	#endif /* CONFIG_S390_EXEC_PROTECT */
254
255	static noinline void do_fault_error(struct pt_regs *regs, long int_code,	228	static noinline void do_fault_error(struct pt_regs *regs, long int_code,
256	unsigned long trans_exc_code, int fault)	229	unsigned long trans_exc_code, int fault)
257	{	230	{
@@ -259,13 +232,6 @@ static noinline void do_fault_error(struct pt_regs *regs, long int_code,
259		232
260	switch (fault) {	233	switch (fault) {
261	case VM_FAULT_BADACCESS:	234	case VM_FAULT_BADACCESS:
262	#ifdef CONFIG_S390_EXEC_PROTECT
263	if ((regs->psw.mask & PSW_MASK_ASC) == PSW_ASC_SECONDARY &&
264	(trans_exc_code & 3) == 0) {
265	signal_return(regs, int_code, trans_exc_code);
266	break;
267	}
268	#endif /* CONFIG_S390_EXEC_PROTECT */
269	case VM_FAULT_BADMAP:	235	case VM_FAULT_BADMAP:
270	/* Bad memory access. Check if it is kernel or user space. */	236	/* Bad memory access. Check if it is kernel or user space. */
271	if (regs->psw.mask & PSW_MASK_PSTATE) {	237	if (regs->psw.mask & PSW_MASK_PSTATE) {
@@ -414,11 +380,6 @@ void __kprobes do_dat_exception(struct pt_regs *regs, long pgm_int_code,
414	int access, fault;	380	int access, fault;
415		381
416	access = VM_READ \| VM_EXEC \| VM_WRITE;	382	access = VM_READ \| VM_EXEC \| VM_WRITE;
417	#ifdef CONFIG_S390_EXEC_PROTECT
418	if ((regs->psw.mask & PSW_MASK_ASC) == PSW_ASC_SECONDARY &&
419	(trans_exc_code & 3) == 0)
420	access = VM_EXEC;
421	#endif
422	fault = do_exception(regs, access, trans_exc_code);	383	fault = do_exception(regs, access, trans_exc_code);
423	if (unlikely(fault))	384	if (unlikely(fault))
424	do_fault_error(regs, pgm_int_code & 255, trans_exc_code, fault);	385	do_fault_error(regs, pgm_int_code & 255, trans_exc_code, fault);