Blame - arch/x86/mm/setup_nx.c - kernel/msm-4.9

blob: 8bea84724a7da4bd1c6d3a0509166618c39e5349 [file] [log] [blame]

Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	1	#include <linux/spinlock.h>
				2	#include <linux/errno.h>
				3	#include <linux/init.h>
				4
				5	#include <asm/pgtable.h>
H. Peter Anvin	4763ed4	2009-11-13 15:28:16 -0800	[diff] [blame]	6	#include <asm/proto.h>
Borislav Petkov	cd4d09e	2016-01-26 22:12:04 +0100	[diff] [blame]	7	#include <asm/cpufeature.h>
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	8
Paul Gortmaker	148f9bb	2013-06-18 18:23:59 -0400	[diff] [blame]	9	static int disable_nx;
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	10
				11	/*
				12	* noexec = on\|off
				13	*
				14	* Control non-executable mappings for processes.
				15	*
				16	* on Enable
				17	* off Disable
				18	*/
				19	static int __init noexec_setup(char *str)
				20	{
				21	if (!str)
				22	return -EINVAL;
				23	if (!strncmp(str, "on", 2)) {
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	24	disable_nx = 0;
				25	} else if (!strncmp(str, "off", 3)) {
				26	disable_nx = 1;
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	27	}
H. Peter Anvin	4763ed4	2009-11-13 15:28:16 -0800	[diff] [blame]	28	x86_configure_nx();
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	29	return 0;
				30	}
				31	early_param("noexec", noexec_setup);
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	32
Paul Gortmaker	148f9bb	2013-06-18 18:23:59 -0400	[diff] [blame]	33	void x86_configure_nx(void)
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	34	{
Andy Lutomirski	320d25b	2016-01-19 13:38:58 -0800	[diff] [blame]	35	/* If disable_nx is set, clear NX on all new mappings going forward. */
				36	if (disable_nx)
Jeremy Fitzhardinge	c44c9ec	2009-09-21 13:40:42 -0700	[diff] [blame]	37	__supported_pte_mask &= ~_PAGE_NX;
				38	}
Kees Cook	4b0f3b8	2009-11-13 15:28:17 -0800	[diff] [blame]	39
				40	void __init x86_report_nx(void)
				41	{
Borislav Petkov	362f924	2015-12-07 10:39:41 +0100	[diff] [blame]	42	if (!boot_cpu_has(X86_FEATURE_NX)) {
Kees Cook	4b0f3b8	2009-11-13 15:28:17 -0800	[diff] [blame]	43	printk(KERN_NOTICE "Notice: NX (Execute Disable) protection "
Kees Cook	6036f37	2010-11-10 10:35:54 -0800	[diff] [blame]	44	"missing in CPU!\n");
Kees Cook	4b0f3b8	2009-11-13 15:28:17 -0800	[diff] [blame]	45	} else {
				46	#if defined(CONFIG_X86_64) \|\| defined(CONFIG_X86_PAE)
				47	if (disable_nx) {
				48	printk(KERN_INFO "NX (Execute Disable) protection: "
				49	"disabled by kernel command line option\n");
				50	} else {
				51	printk(KERN_INFO "NX (Execute Disable) protection: "
				52	"active\n");
				53	}
				54	#else
				55	/* 32bit non-PAE kernel, NX cannot be used */
				56	printk(KERN_NOTICE "Notice: NX (Execute Disable) protection "
				57	"cannot be enabled: non-PAE kernel!\n");
				58	#endif
				59	}
				60	}