systemd

morgan/systemd

Fork 0

mirror of https://github.com/morgan9e/systemd synced 2026-04-15 17:06:39 +09:00

Commit Graph

Author	SHA1	Message	Date
Topi Miettinen	7a114ed4b3	execute: use prctl(PR_SET_MDWE) for MemoryDenyWriteExecute=yes On some ARM platforms, the dynamic linker could use PROT_BTI memory protection flag with `mprotect(..., PROT_BTI \| PROT_EXEC)` to enable additional memory protection for executable pages. But `MemoryDenyWriteExecute=yes` blocks this with seccomp filter denying all `mprotect(..., x \| PROT_EXEC)`. Newly preferred method is to use prctl(PR_SET_MDWE) on supported kernels. Then in-kernel implementation can allow PROT_BTI as necessary, without weakening MDWE. In-kernel version may also be extended to more sophisticated protections in the future.	2023-03-13 18:44:36 +00:00
Yu Watanabe	db9ecf0501	license: LGPL-2.1+ -> LGPL-2.1-or-later	2020-11-09 13:23:58 +09:00
Yu Watanabe	2a03bb3e65	missing: move prctl related entries to missing_prctl.h	2018-12-04 08:34:46 +01:00

Author

SHA1

Message

Date

Topi Miettinen

7a114ed4b3

execute: use prctl(PR_SET_MDWE) for MemoryDenyWriteExecute=yes

On some ARM platforms, the dynamic linker could use PROT_BTI memory protection
flag with `mprotect(..., PROT_BTI | PROT_EXEC)` to enable additional memory
protection for executable pages. But `MemoryDenyWriteExecute=yes` blocks this
with seccomp filter denying all `mprotect(..., x | PROT_EXEC)`.

Newly preferred method is to use prctl(PR_SET_MDWE) on supported kernels. Then
in-kernel implementation can allow PROT_BTI as necessary, without weakening
MDWE. In-kernel version may also be extended to more sophisticated protections
in the future.

2023-03-13 18:44:36 +00:00

Yu Watanabe

db9ecf0501

license: LGPL-2.1+ -> LGPL-2.1-or-later

2020-11-09 13:23:58 +09:00

Yu Watanabe

2a03bb3e65

missing: move prctl related entries to missing_prctl.h

2018-12-04 08:34:46 +01:00

3 Commits