mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-14 22:32:30 +01:00
0766f278d8
Most kernel memory that is allocated after boot does not need to be executable. There are a few exceptions. For example, kernel modules do need executable memory, but they don't use UMA or malloc(9). The BPF JIT compiler also needs executable memory and did use malloc(9) until r317072. (Note that a side effect of r316767 was that the "small allocation" path in UMA on amd64 already returned non-executable memory. This meant that some calls to malloc(9) or the UMA zone(9) allocator could return executable memory, while others could return non-executable memory. This change makes the behavior consistent.) This change makes malloc(9) return non-executable memory unless the new M_EXEC flag is specified. After this change, the UMA zone(9) allocator will always return non-executable memory, and a KASSERT will catch attempts to use the M_EXEC flag to allocate executable memory using uma_zalloc() or its variants. Allocations that do need executable memory have various choices. They may use the M_EXEC flag to malloc(9), or they may use a different VM interfact to obtain executable pages. Now that malloc(9) again allows executable allocations, this change also reverts most of r317072. PR: 228927 Reviewed by: alc, kib, markj, jhb (previous version) Sponsored by: Netflix Differential Revision: https://reviews.freebsd.org/D15691
93 lines
3.3 KiB
C
93 lines
3.3 KiB
C
/*-
|
|
* SPDX-License-Identifier: BSD-3-Clause
|
|
*
|
|
* Copyright (C) 2002-2003 NetGroup, Politecnico di Torino (Italy)
|
|
* Copyright (C) 2005-2009 Jung-uk Kim <jkim@FreeBSD.org>
|
|
* All rights reserved.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
*
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
* 3. Neither the name of the Politecnico di Torino nor the names of its
|
|
* contributors may be used to endorse or promote products derived from
|
|
* this software without specific prior written permission.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
* "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
|
* A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
|
* OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
|
* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
*
|
|
* $FreeBSD$
|
|
*/
|
|
|
|
#ifndef _NET_BPF_JITTER_H_
|
|
#define _NET_BPF_JITTER_H_
|
|
|
|
#ifdef _KERNEL
|
|
MALLOC_DECLARE(M_BPFJIT);
|
|
#endif
|
|
|
|
extern int bpf_jitter_enable;
|
|
|
|
/*
|
|
* Prototype of a filtering function created by the jitter.
|
|
*
|
|
* The syntax and the meaning of the parameters is analogous to the one of
|
|
* bpf_filter(). Notice that the filter is not among the parameters because
|
|
* it is hardwired in the function.
|
|
*/
|
|
typedef u_int (*bpf_filter_func)(u_char *, u_int, u_int);
|
|
|
|
/* Structure describing a native filtering program created by the jitter. */
|
|
typedef struct bpf_jit_filter {
|
|
/* The native filtering binary, in the form of a bpf_filter_func. */
|
|
bpf_filter_func func;
|
|
size_t size;
|
|
} bpf_jit_filter;
|
|
|
|
/*
|
|
* BPF jitter, builds a machine function from a BPF program.
|
|
*
|
|
* param fp The BPF pseudo-assembly filter that will be translated
|
|
* into native code.
|
|
* param nins Number of instructions of the input filter.
|
|
* return The bpf_jit_filter structure containing the native filtering
|
|
* binary.
|
|
*
|
|
* bpf_jitter allocates the buffers for the new native filter and
|
|
* then translates the program pointed by fp calling bpf_jit_compile().
|
|
*/
|
|
bpf_jit_filter *bpf_jitter(struct bpf_insn *fp, int nins);
|
|
|
|
/*
|
|
* Deletes a filtering function that was previously created by bpf_jitter().
|
|
*
|
|
* param filter The filter to destroy.
|
|
*
|
|
* This function frees the variuos buffers (code, memory, etc.) associated
|
|
* with a filtering function.
|
|
*/
|
|
void bpf_destroy_jit_filter(bpf_jit_filter *filter);
|
|
|
|
/*
|
|
* Declarations for machine-dependent functions.
|
|
*/
|
|
struct bpf_insn;
|
|
|
|
bpf_filter_func bpf_jit_compile(struct bpf_insn *, u_int, size_t *);
|
|
|
|
#endif /* _NET_BPF_JITTER_H_ */
|