Received: by 2002:a25:8b12:0:0:0:0:0 with SMTP id i18csp1319636ybl;
        Sat, 10 Aug 2019 01:16:01 -0700 (PDT)
X-Google-Smtp-Source: APXvYqznBcFUryX6RVQNG9kNIDHy4pVorEFlCkjsWFNQnwps7VrwjlJU7Khk4Usxd/+wwtzVFjUH
X-Received: by 2002:a17:90a:3401:: with SMTP id o1mr13339198pjb.7.1565424961897;
        Sat, 10 Aug 2019 01:16:01 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1565424961; cv=none;
        d=google.com; s=arc-20160816;
        b=W7cfTZ+J704nvYF0XP6XEzHMVKSv8RCLYArJ/v87z42DkFIm+vl3AYw+6bkbOmX6E5
         hj9eWwrHkvoCbsWPewdw0sa89iupj4ZdRx8xn3Hmtqyh26iBQ34xcOaUoV2H4sK/xcs+
         p4dzgKBLe3jhqGORnlA8sC8kRth4r12sJ2rNU2TTYvTOsg9ud4UsKkkXu4xAlpJFHaP2
         qD7OgD044nwYAo0ObRNTQjcQCyzK5aGyxedy1p12mL8cS74iJfJ+4/40P5ahYkwZFF6+
         ryQN8X+fNsh48z2iKDerrxazxGzTFoK1QIVVk6Snfay1eY5WcEN9dfVGuS3HZFYTW8EM
         PliA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:message-id:date:subject:to
         :from;
        bh=tl7AuzYkz+Hr9xo0UvXkv1dYqVPRv0sfOdli2DgyMu0=;
        b=RtmZfP1+qfr2u+LXbMyds9ymL4ulUoAmujKPon9rbbv3wZWr5tbk0afo2CCWumVamt
         8/AI/P9yRvPzHKYseKcmQWGg3wHuQxkDduv1EMPcUheMEzRnzUF2DC8y02fqBJtyJWo2
         KJlmJysi2pmJRkYGxNAiqIt17ju3kDscuW0DFcKlXKaOtIZrx4ZuyX5rCbPFQmZgAKMF
         jILh3vesbNxS5GWx8FVy+izb4RZEX/aT/ypzPEKBkSmM6NPmvXEyeYh4weeWDlb6hJhJ
         /Zo5QKJOOJOfPUavqhrKhIWKulydv0N8SyuQWZH2Ez62A/S6/Zu89PApSi6rpz50nwuf
         oHWA==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id l24si19139952pgj.173.2019.08.10.01.15.46;
        Sat, 10 Aug 2019 01:16:01 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726146AbfHJINx (ORCPT <rfc822;epopevad@gmail.com> + 99 others);
        Sat, 10 Aug 2019 04:13:53 -0400
Received: from mail5.windriver.com ([192.103.53.11]:50146 "EHLO mail5.wrs.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1725372AbfHJINx (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 10 Aug 2019 04:13:53 -0400
Received: from ALA-HCA.corp.ad.wrs.com (ala-hca.corp.ad.wrs.com [147.11.189.40])
        by mail5.wrs.com (8.15.2/8.15.2) with ESMTPS id x7A89qbk020525
        (version=TLSv1 cipher=AES128-SHA bits=128 verify=FAIL);
        Sat, 10 Aug 2019 01:10:03 -0700
Received: from pek-lpg-core2.corp.ad.wrs.com (128.224.153.41) by
 ALA-HCA.corp.ad.wrs.com (147.11.189.40) with Microsoft SMTP Server id
 14.3.468.0; Sat, 10 Aug 2019 01:09:41 -0700
From:   <zhe.he@windriver.com>
To:     <linux@armlinux.org.uk>, <ast@kernel.org>, <daniel@iogearbox.net>,
        <kafai@fb.com>, <songliubraving@fb.com>, <yhs@fb.com>,
        <matthias.schiffer@ew.tq-group.com>, <info@metux.net>,
        <gregkh@linuxfoundation.org>, <tglx@linutronix.de>,
        <linux-arm-kernel@lists.infradead.org>,
        <linux-kernel@vger.kernel.org>, <netdev@vger.kernel.org>,
        <bpf@vger.kernel.org>, <zhe.he@windriver.com>
Subject: [PATCH] ARM: module: Avoid W and X mappings at the beginning
Date:   Sat, 10 Aug 2019 16:09:35 +0800
Message-ID: <1565424575-346010-1-git-send-email-zhe.he@windriver.com>
X-Mailer: git-send-email 2.7.4
MIME-Version: 1.0
Content-Type: text/plain
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

From: He Zhe <zhe.he@windriver.com>

It is more secure to map module memory as not-execute at the beginning.
Memory sections that need to be executable will be turned to executable
later in complete_formation.

This is a corresponding change for ARM to the following commit
commit f2c65fb3221a ("x86/modules: Avoid breaking W^X while loading modules")

Tested with test_bpf:
test_bpf: Summary: 378 PASSED, 0 FAILED, [0/366 JIT'ed]

Signed-off-by: He Zhe <zhe.he@windriver.com>
---
 arch/arm/kernel/module.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/arch/arm/kernel/module.c b/arch/arm/kernel/module.c
index deef17f..197b3b9 100644
--- a/arch/arm/kernel/module.c
+++ b/arch/arm/kernel/module.c
@@ -45,12 +45,12 @@ void *module_alloc(unsigned long size)
 		gfp_mask |= __GFP_NOWARN;
 
 	p = __vmalloc_node_range(size, 1, MODULES_VADDR, MODULES_END,
-				gfp_mask, PAGE_KERNEL_EXEC, 0, NUMA_NO_NODE,
+				gfp_mask, PAGE_KERNEL, 0, NUMA_NO_NODE,
 				__builtin_return_address(0));
 	if (!IS_ENABLED(CONFIG_ARM_MODULE_PLTS) || p)
 		return p;
 	return __vmalloc_node_range(size, 1,  VMALLOC_START, VMALLOC_END,
-				GFP_KERNEL, PAGE_KERNEL_EXEC, 0, NUMA_NO_NODE,
+				GFP_KERNEL, PAGE_KERNEL, 0, NUMA_NO_NODE,
 				__builtin_return_address(0));
 }
 #endif
-- 
2.7.4