git.baikalelectronics.ru Git - kernel.git/commit

author	Ard Biesheuvel <ardb@kernel.org>
	Mon, 13 Jan 2020 17:22:36 +0000 (18:22 +0100)
committer	Ingo Molnar <mingo@kernel.org>
	Mon, 20 Jan 2020 07:13:00 +0000 (08:13 +0100)
commit	66ffa1bfb9f13dff32aa90d04fbbb1d5af25ad5d
tree	683ae4a3e75ecdf5ad11546f10d3d0a4ac7f4003	tree \| snapshot
parent	cfcf1ac6843463d1a82c659b97643cdea9c7b8cd	commit \| diff

x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd

The following commit:

6112b6b66bda ("x86/mm/pat: Don't implicitly allow _PAGE_RW in kernel_map_pages_in_pgd()")

modified kernel_map_pages_in_pgd() to manage writable permissions
of memory mappings in the EFI page table in a different way, but
in the process, it removed the ability to clear NX attributes from
read-only mappings, by clobbering the clear mask if _PAGE_RW is not
being requested.

Failure to remove the NX attribute from read-only mappings is
unlikely to be a security issue, but it does prevent us from
tightening the permissions in the EFI page tables going forward,
so let's fix it now.

Fixes: 6112b6b66bda ("x86/mm/pat: Don't implicitly allow _PAGE_RW in kernel_map_pages_in_pgd()
Signed-off-by: Ard Biesheuvel <ardb@kernel.org>
Signed-off-by: Ingo Molnar <mingo@kernel.org>
Link: https://lore.kernel.org/r/20200113172245.27925-5-ardb@kernel.org