review.tizen.org Git - platform/kernel/linux-exynos.git/commit

author	Kees Cook <keescook@chromium.org>
	Tue, 26 Jan 2016 00:20:21 +0000 (01:20 +0100)
committer	Russell King <rmk+kernel@arm.linux.org.uk>
	Thu, 11 Feb 2016 15:44:10 +0000 (15:44 +0000)
commit	64ac2e74f0b21505606faf725cb5633d63b8b728
tree	2c83a73215c8f7dd59cacc4f571a0ca839abc228	tree \| snapshot
parent	02afa9a87b232bca15bc30808b9310c6388ca1a8	commit \| diff

ARM: 8502/1: mm: mark section-aligned portion of rodata NX

When rodata is large enough that it crosses a section boundary after the
kernel text, mark the rest NX. This is as close to full NX of rodata as
we can get without splitting page tables or doing section alignment via
CONFIG_DEBUG_ALIGN_RODATA.

When the config is:

CONFIG_DEBUG_RODATA=y
# CONFIG_DEBUG_ALIGN_RODATA is not set

Before:

---[ Kernel Mapping ]---
0x80000000-0x80100000           1M     RW NX SHD
0x80100000-0x80a00000           9M     ro x  SHD
0x80a00000-0xa0000000         502M     RW NX SHD

After:

---[ Kernel Mapping ]---
0x80000000-0x80100000           1M     RW NX SHD
0x80100000-0x80700000           6M     ro x  SHD
0x80700000-0x80a00000           3M     ro NX SHD
0x80a00000-0xa0000000         502M     RW NX SHD

Signed-off-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Russell King <rmk+kernel@arm.linux.org.uk>

arch/arm/kernel/vmlinux.lds.S		diff \| blob \| history
arch/arm/mm/init.c		diff \| blob \| history