[28/29] x86/mm: Report actual image regions in /proc/iomem

Message ID	20190926175602.33098-29-keescook@chromium.org (mailing list archive)
State	Not Applicable
Headers	show Return-Path: <linuxppc-dev-bounces+patchwork-incoming=ozlabs.org@lists.ozlabs.org> From: Kees Cook <keescook@chromium.org> To: Thomas Gleixner <tglx@linutronix.de> Subject: [PATCH 28/29] x86/mm: Report actual image regions in /proc/iomem Date: Thu, 26 Sep 2019 10:56:01 -0700 Message-Id: <20190926175602.33098-29-keescook@chromium.org> In-Reply-To: <20190926175602.33098-1-keescook@chromium.org> References: <20190926175602.33098-1-keescook@chromium.org> Precedence: list Cc: linux-arch@vger.kernel.org, linux-s390@vger.kernel.org, Michal Simek <monstr@monstr.eu>, linux-alpha@vger.kernel.org, linux-ia64@vger.kernel.org, Kees Cook <keescook@chromium.org>, Arnd Bergmann <arnd@arndb.de>, linux-xtensa@linux-xtensa.org, linux-kernel@vger.kernel.org, Dave Hansen <dave.hansen@linux.intel.com>, x86@kernel.org, Yoshinori Sato <ysato@users.sourceforge.jp>, Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>, linux-parisc@vger.kernel.org, Andy Lutomirski <luto@kernel.org>, "H. Peter Anvin" <hpa@zytor.com>, Rick Edgecombe <rick.p.edgecombe@intel.com>, linuxppc-dev@lists.ozlabs.org, linux-c6x-dev@linux-c6x.org Errors-To: linuxppc-dev-bounces+patchwork-incoming=ozlabs.org@lists.ozlabs.org Sender: "Linuxppc-dev" <linuxppc-dev-bounces+patchwork-incoming=ozlabs.org@lists.ozlabs.org>
Series	vmlinux.lds.h: Refactor EXCEPTION_TABLE and NOTES \| expand [00/29] vmlinux.lds.h: Refactor EXCEPTION_TABLE and NOTES [01/29] powerpc: Rename "notes" PT_NOTE to "note" [02/29] powerpc: Remove PT_NOTE workaround [03/29] powerpc: Rename PT_LOAD identifier "kernel" to "text" [04/29] alpha: Rename PT_LOAD identifier "kernel" to "text" [05/29] ia64: Rename PT_LOAD identifier "code" to "text" [06/29] s390: Move RO_DATA into "text" PT_LOAD Program Header [07/29] x86: Restore "text" Program Header with dummy section [08/29] vmlinux.lds.h: Provide EMIT_PT_NOTE to indicate export of .notes [09/29] vmlinux.lds.h: Move Program Header restoration into NOTES macro [10/29] vmlinux.lds.h: Move NOTES into RO_DATA [11/29] vmlinux.lds.h: Replace RODATA with RO_DATA [12/29] vmlinux.lds.h: Replace RO_DATA_SECTION with RO_DATA [13/29] vmlinux.lds.h: Replace RW_DATA_SECTION with RW_DATA [14/29] vmlinux.lds.h: Allow EXCEPTION_TABLE to live in RO_DATA [15/29] x86: Actually use _etext for end of text segment [16/29] x86: Move EXCEPTION_TABLE to RO_DATA segment [17/29] alpha: Move EXCEPTION_TABLE to RO_DATA segment [18/29] arm64: Move EXCEPTION_TABLE to RO_DATA segment [19/29] c6x: Move EXCEPTION_TABLE to RO_DATA segment [20/29] h8300: Move EXCEPTION_TABLE to RO_DATA segment [21/29] ia64: Move EXCEPTION_TABLE to RO_DATA segment [22/29] microblaze: Move EXCEPTION_TABLE to RO_DATA segment [23/29] parisc: Move EXCEPTION_TABLE to RO_DATA segment [24/29] powerpc: Move EXCEPTION_TABLE to RO_DATA segment [25/29] xtensa: Move EXCEPTION_TABLE to RO_DATA segment [26/29] x86/mm: Remove redundant &s on addresses [27/29] x86/mm: Report which part of kernel image is freed [28/29] x86/mm: Report actual image regions in /proc/iomem [29/29] x86: Use INT3 instead of NOP for linker fill bytes

Message ID

20190926175602.33098-29-keescook@chromium.org (mailing list archive)

State

Not Applicable

Headers

From: Kees Cook <keescook@chromium.org>
To: Thomas Gleixner <tglx@linutronix.de>
Subject: [PATCH 28/29] x86/mm: Report actual image regions in /proc/iomem
Date: Thu, 26 Sep 2019 10:56:01 -0700
Message-Id: <20190926175602.33098-29-keescook@chromium.org>
In-Reply-To: <20190926175602.33098-1-keescook@chromium.org>
References: <20190926175602.33098-1-keescook@chromium.org>
Precedence: list
Cc: linux-arch@vger.kernel.org, linux-s390@vger.kernel.org,
	Michal Simek <monstr@monstr.eu>, linux-alpha@vger.kernel.org,
	linux-ia64@vger.kernel.org, Kees Cook <keescook@chromium.org>,
	Arnd Bergmann <arnd@arndb.de>, linux-xtensa@linux-xtensa.org,
	linux-kernel@vger.kernel.org, Dave Hansen <dave.hansen@linux.intel.com>, 
	x86@kernel.org, Yoshinori Sato <ysato@users.sourceforge.jp>,
	Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
	linux-parisc@vger.kernel.org, Andy Lutomirski <luto@kernel.org>,
	"H. Peter Anvin" <hpa@zytor.com>,
	Rick Edgecombe <rick.p.edgecombe@intel.com>, 
	linuxppc-dev@lists.ozlabs.org, linux-c6x-dev@linux-c6x.org
Errors-To: linuxppc-dev-bounces+patchwork-incoming=ozlabs.org@lists.ozlabs.org
Sender: "Linuxppc-dev"
	<linuxppc-dev-bounces+patchwork-incoming=ozlabs.org@lists.ozlabs.org>

Series

vmlinux.lds.h: Refactor EXCEPTION_TABLE and NOTES | expand

Checks

Context	Check	Description
snowpatch_ozlabs/apply_patch	success	Successfully applied on branch next (6edfc6487b474fe01857dc3f1a9cd701bb9b21c8)
snowpatch_ozlabs/checkpatch	warning	total: 0 errors, 0 warnings, 1 checks, 30 lines checked

Context

Check

Description

snowpatch_ozlabs/apply_patch

success

Successfully applied on branch next (6edfc6487b474fe01857dc3f1a9cd701bb9b21c8)

snowpatch_ozlabs/checkpatch

warning

total: 0 errors, 0 warnings, 1 checks, 30 lines checked

Commit Message

Kees Cook Sept. 26, 2019, 5:56 p.m. UTC

The resource reservations in made for the kernel image did not reflect
the gaps between text, rodata, and data. This adds the rodata resource
and updates the start/end calculations to match the respective calls to
free_kernel_image_pages().

Before (booted with "nokaslr" for easier comparison):

00100000-bffd9fff : System RAM
  01000000-01e011d0 : Kernel code
  01e011d1-025619bf : Kernel data
  02a95000-035fffff : Kernel bss

After:

00100000-bffd9fff : System RAM
  01000000-01e011d0 : Kernel code
  02000000-023d4fff : Kernel rodata
  02400000-025619ff : Kernel data
  02a95000-035fffff : Kernel bss

Signed-off-by: Kees Cook <keescook@chromium.org>
---
 arch/x86/kernel/setup.c | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

Comments

Borislav Petkov Oct. 10, 2019, 6 p.m. UTC | #1

On Thu, Sep 26, 2019 at 10:56:01AM -0700, Kees Cook wrote:
> The resource reservations in made for the kernel image did not reflect
			      ^
			      /proc/iomem

> the gaps between text, rodata, and data. This adds the rodata resource

s/This adds/Add/

> and updates the start/end calculations to match the respective calls to

s/updates/update/

> free_kernel_image_pages().
> 
> Before (booted with "nokaslr" for easier comparison):

...

diff --git a/arch/x86/kernel/setup.c b/arch/x86/kernel/setup.c
index bbe35bf879f5..0bc71ee3a9c3 100644
--- a/arch/x86/kernel/setup.c
+++ b/arch/x86/kernel/setup.c
@@ -143,6 +143,13 @@  struct boot_params boot_params;
 /*
  * Machine setup..
  */
+static struct resource rodata_resource = {
+	.name	= "Kernel rodata",
+	.start	= 0,
+	.end	= 0,
+	.flags	= IORESOURCE_BUSY | IORESOURCE_SYSTEM_RAM
+};
+
 static struct resource data_resource = {
 	.name	= "Kernel data",
 	.start	= 0,
@@ -951,7 +958,9 @@  void __init setup_arch(char **cmdline_p)
 
 	code_resource.start = __pa_symbol(_text);
 	code_resource.end = __pa_symbol(_etext)-1;
-	data_resource.start = __pa_symbol(_etext);
+	rodata_resource.start = __pa_symbol(__start_rodata);
+	rodata_resource.end = __pa_symbol(__end_rodata)-1;
+	data_resource.start = __pa_symbol(_sdata);
 	data_resource.end = __pa_symbol(_edata)-1;
 	bss_resource.start = __pa_symbol(__bss_start);
 	bss_resource.end = __pa_symbol(__bss_stop)-1;
@@ -1040,6 +1049,7 @@  void __init setup_arch(char **cmdline_p)
 
 	/* after parse_early_param, so could debug it */
 	insert_resource(&iomem_resource, &code_resource);
+	insert_resource(&iomem_resource, &rodata_resource);
 	insert_resource(&iomem_resource, &data_resource);
 	insert_resource(&iomem_resource, &bss_resource);

[28/29] x86/mm: Report actual image regions in /proc/iomem

Checks

Commit Message

Comments

Patch