sergiotarxz/nuttx
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

arm64_addrenv_pgmap.c: Revoke user execution access to kernel mmap'd pages

Browse Source 
Otherwise, user can run code from there
This commit is contained in:
Ville Juven 2024-09-04 12:27:45 +03:00 committed by Xiang Xiao
parent eebff25d69
commit 0ca1a07e84
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
arch/arm64/src/common/arm64_addrenv_pgmap.c
View File

@ -271,6 +271,10 @@ int up_addrenv_kmap_pages(void **pages, unsigned int npages, uintptr_t vaddr,
mask &= ~PTE_BLOCK_DESC_NG; mask &= ~PTE_BLOCK_DESC_NG;
/* Also, revoke user execute access */
mask |= PTE_BLOCK_DESC_UXN;
/* Let arm64_map_pages do the work */ /* Let arm64_map_pages do the work */
return arm64_map_pages(addrenv, (uintptr_t *)pages, npages, vaddr, mask); return arm64_map_pages(addrenv, (uintptr_t *)pages, npages, vaddr, mask);