[16/22] mm: Introduce arch_validate_flags()

Message ID	20191211184027.20130-17-catalin.marinas@arm.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <SRS0=HwE+=2B=kvack.org=owner-linux-mm@kernel.org> DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org C90FD21556 From: Catalin Marinas <catalin.marinas@arm.com> To: linux-arm-kernel@lists.infradead.org Cc: Will Deacon <will@kernel.org>, Marc Zyngier <maz@kernel.org>, Vincenzo Frascino <vincenzo.frascino@arm.com>, Szabolcs Nagy <szabolcs.nagy@arm.com>, Richard Earnshaw <Richard.Earnshaw@arm.com>, Kevin Brodsky <kevin.brodsky@arm.com>, Andrey Konovalov <andreyknvl@google.com>, linux-mm@kvack.org, linux-arch@vger.kernel.org Subject: [PATCH 16/22] mm: Introduce arch_validate_flags() Date: Wed, 11 Dec 2019 18:40:21 +0000 Message-Id: <20191211184027.20130-17-catalin.marinas@arm.com> In-Reply-To: <20191211184027.20130-1-catalin.marinas@arm.com> References: <20191211184027.20130-1-catalin.marinas@arm.com> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Sender: owner-linux-mm@kvack.org Precedence: bulk
Series	arm64: Memory Tagging Extension user-space support \| expand [00/22] arm64: Memory Tagging Extension user-space support [01/22] mm: Reserve asm-generic prot flags 0x10 and 0x20 for arch use [02/22] kbuild: Add support for 'as-instr' to be used in Kconfig files [03/22] arm64: alternative: Allow alternative_insn to always issue the first instruction [04/22] arm64: Use macros instead of hard-coded constants for MAIR_EL1 [05/22] arm64: mte: system register definitions [06/22] arm64: mte: CPU feature detection and initial sysreg configuration [07/22] arm64: mte: Use Normal Tagged attributes for the linear map [08/22] arm64: mte: Assembler macros and default architecture for .S files [09/22] arm64: mte: Tags-aware clear_page() implementation [10/22] arm64: mte: Tags-aware copy_page() implementation [11/22] arm64: Tags-aware memcmp_pages() implementation [12/22] arm64: mte: Add specific SIGSEGV codes [13/22] arm64: mte: Handle synchronous and asynchronous tag check faults [14/22] mm: Introduce arch_calc_vm_flag_bits() [15/22] arm64: mte: Add PROT_MTE support to mmap() and mprotect() [16/22] mm: Introduce arch_validate_flags() [17/22] arm64: mte: Validate the PROT_MTE request via arch_validate_flags() [18/22] mm: Allow arm64 mmap(PROT_MTE) on RAM-based files [19/22] arm64: mte: Allow user control of the tag check mode via prctl() [20/22] arm64: mte: Allow user control of the excluded tags via prctl() [21/22] arm64: mte: Kconfig entry [22/22] arm64: mte: Add Memory Tagging Extension documentation

Message ID

20191211184027.20130-17-catalin.marinas@arm.com (mailing list archive)

State

New, archived

Headers

DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org C90FD21556
From: Catalin Marinas <catalin.marinas@arm.com>
To: linux-arm-kernel@lists.infradead.org
Cc: Will Deacon <will@kernel.org>,
	Marc Zyngier <maz@kernel.org>,
	Vincenzo Frascino <vincenzo.frascino@arm.com>,
	Szabolcs Nagy <szabolcs.nagy@arm.com>,
	Richard Earnshaw <Richard.Earnshaw@arm.com>,
	Kevin Brodsky <kevin.brodsky@arm.com>,
	Andrey Konovalov <andreyknvl@google.com>,
	linux-mm@kvack.org,
	linux-arch@vger.kernel.org
Subject: [PATCH 16/22] mm: Introduce arch_validate_flags()
Date: Wed, 11 Dec 2019 18:40:21 +0000
Message-Id: <20191211184027.20130-17-catalin.marinas@arm.com>
In-Reply-To: <20191211184027.20130-1-catalin.marinas@arm.com>
References: <20191211184027.20130-1-catalin.marinas@arm.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Sender: owner-linux-mm@kvack.org
Precedence: bulk

Series

arm64: Memory Tagging Extension user-space support | expand

Commit Message

Catalin Marinas Dec. 11, 2019, 6:40 p.m. UTC

Similarly to arch_validate_prot() called from do_mprotect_pkey(), an
architecture may need to sanity-check the new vm_flags.

Define a dummy function always returning true. In addition to
do_mprotect_pkey(), also invoke it from mmap_region() prior to updating
vma->vm_page_prot to allow the architecture code to veto potentially
inconsistent vm_flags.

Signed-off-by: Catalin Marinas <catalin.marinas@arm.com>
---
 include/linux/mman.h | 13 +++++++++++++
 mm/mmap.c            |  9 +++++++++
 mm/mprotect.c        |  8 ++++++++
 3 files changed, 30 insertions(+)

diff --git a/include/linux/mman.h b/include/linux/mman.h
index c53b194c11a1..686fa6c98ce7 100644
--- a/include/linux/mman.h
+++ b/include/linux/mman.h
@@ -103,6 +103,19 @@  static inline bool arch_validate_prot(unsigned long prot, unsigned long addr)
 #define arch_validate_prot arch_validate_prot
 #endif
 
+#ifndef arch_validate_flags
+/*
+ * This is called from mprotect() with the updated vma->vm_flags.
+ *
+ * Returns true if the VM_* flags are valid.
+ */
+static inline bool arch_validate_flags(unsigned long flags)
+{
+	return true;
+}
+#define arch_validate_flags arch_validate_flags
+#endif
+
 /*
  * Optimisation macro.  It is equivalent to:
  *      (x & bit1) ? bit2 : 0
diff --git a/mm/mmap.c b/mm/mmap.c
index 9c648524e4dc..433355c5bdf1 100644
--- a/mm/mmap.c
+++ b/mm/mmap.c
@@ -1804,6 +1804,15 @@  unsigned long mmap_region(struct file *file, unsigned long addr,
 		vma_set_anonymous(vma);
 	}
 
+	/* Allow architectures to sanity-check the vm_flags */
+	if (!arch_validate_flags(vma->vm_flags)) {
+		error = -EINVAL;
+		if (file)
+			goto unmap_and_free_vma;
+		else
+			goto free_vma;
+	}
+
 	vma_link(mm, vma, prev, rb_link, rb_parent);
 	/* Once vma denies write, undo our temporary denial count */
 	if (file) {
diff --git a/mm/mprotect.c b/mm/mprotect.c
index 7a8e84f86831..787b071bcbfd 100644
--- a/mm/mprotect.c
+++ b/mm/mprotect.c
@@ -543,6 +543,14 @@  static int do_mprotect_pkey(unsigned long start, size_t len,
 			goto out;
 		}
 
+		/*
+		 * Allow architectures to sanity-check the new flags.
+		 */
+		if (!arch_validate_flags(newflags)) {
+			error = -EINVAL;
+			goto out;
+		}
+
 		error = security_file_mprotect(vma, reqprot, prot);
 		if (error)
 			goto out;

[16/22] mm: Introduce arch_validate_flags()

Commit Message

Patch