riscv: bpf: Avoid breaking W^X

xhackerustc · palmer-dabbelt · commit fc8504765ec5 · 2021-04-26T08:25:14.000-07:00
We allocate Non-executable pages, then call bpf_jit_binary_lock_ro()
to enable executable permission after mapping them read-only. This is
to prepare for STRICT_MODULE_RWX in following patch.

Signed-off-by: Jisheng Zhang &lt;jszhang@kernel.org&gt;
Signed-off-by: Palmer Dabbelt &lt;palmerdabbelt@google.com&gt;
diff --git a/arch/riscv/net/bpf_jit_core.c b/arch/riscv/net/bpf_jit_core.c
@@ -152,6 +152,7 @@ struct bpf_prog *bpf_int_jit_compile(struct bpf_prog *prog)
 	bpf_flush_icache(jit_data->header, ctx->insns + ctx->ninsns);
 
 	if (!prog->is_func || extra_pass) {
+		bpf_jit_binary_lock_ro(jit_data->header);
 out_offset:
 		kfree(ctx->offset);
 		kfree(jit_data);
@@ -169,7 +170,7 @@ void *bpf_jit_alloc_exec(unsigned long size)
 {
 	return __vmalloc_node_range(size, PAGE_SIZE, BPF_JIT_REGION_START,
 				    BPF_JIT_REGION_END, GFP_KERNEL,
-				    PAGE_KERNEL_EXEC, 0, NUMA_NO_NODE,
+				    PAGE_KERNEL, 0, NUMA_NO_NODE,
 				    __builtin_return_address(0));
 }
 

Original file line number	Diff line number	Diff line change
`@@ -152,6 +152,7 @@ struct bpf_prog bpf_int_jit_compile(struct bpf_prog prog)`
`152`	`152`	`bpf_flush_icache(jit_data->header, ctx->insns + ctx->ninsns);`
`153`	`153`
`154`	`154`	`if (!prog->is_func \|\| extra_pass) {`
	`155`	`+ bpf_jit_binary_lock_ro(jit_data->header);`
`155`	`156`	`out_offset:`
`156`	`157`	`kfree(ctx->offset);`
`157`	`158`	`kfree(jit_data);`
`@@ -169,7 +170,7 @@ void *bpf_jit_alloc_exec(unsigned long size)`
`169`	`170`	`{`
`170`	`171`	`return __vmalloc_node_range(size, PAGE_SIZE, BPF_JIT_REGION_START,`
`171`	`172`	`BPF_JIT_REGION_END, GFP_KERNEL,`
`172`		`- PAGE_KERNEL_EXEC, 0, NUMA_NO_NODE,`
	`173`	`+ PAGE_KERNEL, 0, NUMA_NO_NODE,`
`173`	`174`	`__builtin_return_address(0));`
`174`	`175`	`}`
`175`	`176`