Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp5139743yba; Wed, 10 Apr 2019 12:13:42 -0700 (PDT) X-Google-Smtp-Source: APXvYqxInPgxMY/UNxMjOPTwJocx4wIKNoJnyAfzBeB7HBlse2iBWXDd7QxKIZTXexTYdYm38PFs X-Received: by 2002:aa7:914d:: with SMTP id 13mr45433646pfi.149.1554923622598; Wed, 10 Apr 2019 12:13:42 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1554923622; cv=none; d=google.com; s=arc-20160816; b=pwlzechoFvbW1Njso9ISM77KgZv37sbf5au0kqQZlq0q5CRxFANsCVa2EBf81vTQkD X2qsCjoGYrPJq2XvJHp+ueZAs/t73b2V7p38t6+o+3iRTccaHN36UPB3fYUZ8RVjWSoP Zf99VuY4mlNECmxisk1/DRtYzxTU0l4hHlbzNdKyrNtn8cD4+BbkVz3dGMIESp1HyzEB FCOOHz3HUIcb1fYElB89wipu201K/z/weyTBb/WorgbWRmo+ft3za8hazle5uX7USrPK GpZkB34VHGeZq9lqqYbStEnkXDg0jxboltLoaRert/IXrw2FY1KvoOYhSmei24t0VjJp s6QA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=+zEMNc7324kqJ6udI8dxNG1UczLiZYFItO/G9LMbCUw=; b=PAJiC0ZIXVgxy1+vvwDloZ9meRm2aqeCwuGHMepv/qsvxF+nvqvaqvuG4pgrHVximA U6qylmGkYtO3tdnVWj2UlTGYfSP1Wp2wO9fjrxnpWTdX7HvTGsiMSt4lkoEeRoXKE8oD HIhh5Afu1hQ2sEiO5KunkrpGHmdBl74yqPmLSslWFDufSFc44CDj3iCx/YBhw06e2nkx xxzB37U+Kj2uhZrJuYcmh9hi9NDf/obwWfoWGUM5oBBdM7H56tGaE8IVRcDEKCtWuOqd iWflEQcvJ46QtnihbM1QrsttMCL8WvEVfIo9pi2a5fkasA1Z5vsFxIu43dUH0xxjSgCU +JCg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@joelfernandes.org header.s=google header.b=qTG4GW66; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id d186si33696015pfa.218.2019.04.10.12.13.26; Wed, 10 Apr 2019 12:13:42 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@joelfernandes.org header.s=google header.b=qTG4GW66; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726858AbfDJTIt (ORCPT + 99 others); Wed, 10 Apr 2019 15:08:49 -0400 Received: from mail-pl1-f195.google.com ([209.85.214.195]:37416 "EHLO mail-pl1-f195.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726828AbfDJTIo (ORCPT ); Wed, 10 Apr 2019 15:08:44 -0400 Received: by mail-pl1-f195.google.com with SMTP id w23so1983478ply.4 for ; Wed, 10 Apr 2019 12:08:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=joelfernandes.org; s=google; h=from:to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; bh=+zEMNc7324kqJ6udI8dxNG1UczLiZYFItO/G9LMbCUw=; b=qTG4GW66i99y0JN8DLJIq2jNVfkuBzXgqFI0rmEU3GAPdkdJkateK3pWGh2YF+dLCI dmCEvn8CTEoJR/E1Rvlb42hCcIqCFcAeT1dyTbRv8THAR3vjr3E3jzeOKTkMic8zxMwQ oPm5VzkaHGwgPje6vpMhHBkngYlRQKLcSonyA= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=+zEMNc7324kqJ6udI8dxNG1UczLiZYFItO/G9LMbCUw=; b=tRX2zO1hdSVgPY+yyYsJiZlKkIGIVblv61jDoX4tiLTf+m0svK7vtMLbtP+W9sisiD uff9iy/+VVpF9Fijns0icD3NRq6BVoCbYUBVNx1dmcbV5BJeCT9xIyhzlECKMcJ8aPUg UogUO0FF5MmLm6lhADNsx7q6BgJv8j+ws3aFXrPUaVGlxHEuiWONDBrNw80Z4SvzcUF8 7a/OkRp0zmQch5Zp7dvhgcJfnMUqAlEMPCdkMEJXSJOMElbJ1U18lIFd4tA//uSppZl7 jPfBIs56l5ti2fIepEV69qhFpCGi5bVio5suHInyy7VnCmSyYAhL+2TbCvzj9ga4ZLCx rchQ== X-Gm-Message-State: APjAAAUfucVQ/e7QX7uEZq5Ofqsp7DeAsKwADWZoJRxEn2q/3kv/y3uy 3Vu5lUbuWhCHXB+XFxxIqqpMQg0xsp0= X-Received: by 2002:a17:902:b706:: with SMTP id d6mr45474278pls.250.1554923322871; Wed, 10 Apr 2019 12:08:42 -0700 (PDT) Received: from joelaf.cam.corp.google.com ([2620:15c:6:12:9c46:e0da:efbf:69cc]) by smtp.gmail.com with ESMTPSA id v15sm52243547pff.105.2019.04.10.12.08.40 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 10 Apr 2019 12:08:42 -0700 (PDT) From: "Joel Fernandes (Google)" To: linux-kernel@vger.kernel.org Cc: "Joel Fernandes (Google)" , paulmck@linux.vnet.ibm.com, keescook@chromium.org, mathieu.desnoyers@efficios.com, rostedt@goodmis.org, Jessica Yu , kernel-hardening@lists.openwall.com, kernel-team@android.com, rcu@vger.kernel.org Subject: [PATCH v2 3/3] module: Make __tracepoints_ptrs as read-only Date: Wed, 10 Apr 2019 15:08:23 -0400 Message-Id: <20190410190823.109172-3-joel@joelfernandes.org> X-Mailer: git-send-email 2.21.0.392.gf8f6787159e-goog In-Reply-To: <20190410190823.109172-1-joel@joelfernandes.org> References: <20190410190823.109172-1-joel@joelfernandes.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org This series hardens the tracepoints in modules by making the array of pointers referring to the tracepoints as read-only. This array is needed during module unloading to verify that the tracepoint is quiescent. There is no reason for the array to be to be writable after init, and can cause security or other hidden bugs. Mark these as ro_after_init. Suggested-by: paulmck@linux.vnet.ibm.com Suggested-by: keescook@chromium.org Suggested-by: mathieu.desnoyers@efficios.com Cc: rostedt@goodmis.org Signed-off-by: Joel Fernandes (Google) --- kernel/module.c | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/kernel/module.c b/kernel/module.c index 8b9631e789f0..be980aaa8804 100644 --- a/kernel/module.c +++ b/kernel/module.c @@ -3320,6 +3320,12 @@ static const char * const ro_after_init_sections[] = { * by the SRCU notifiers */ "___srcu_struct_ptrs", + + /* + * Array of tracepoint pointers used for checking if tracepoints are + * quiescent during unloading. + */ + "__tracepoints_ptrs", }; static struct module *layout_and_allocate(struct load_info *info, int flags) -- 2.21.0.392.gf8f6787159e-goog