cxl: Fix DAR check & use REGION_ID instead of opencoding

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

The current code will set _PAGE_USER to the access flags for any
fault address, because the ~ operation will be true for all address we
take a fault on. But setting _PAGE_USER also means that the fault will
be handled only if the page table have _PAGE_USER set. Hence there is
no security hole with the current code.

Now if it is an user space access, then the change in this patch really
don't have an impact because we have (!ctx->kernel) set true
and we take the if condition true.

Now kernel context created fault on an address in the kernel range
will result in a fault loop because we will not insert the
hash pte due to access and pte permission mismatch. This patch fix
the above issue.

Fixes: f204e0b8cedd ("cxl: Driver code for powernv PCIe based cards for userspace access")
Reviewed-by: Andrew Donnellan <andrew.donnellan@au1.ibm.com>
Acked-by: Ian Munsie <imunsie@au1.ibm.com>
Signed-off-by: Aneesh Kumar K.V <aneesh.kumar@linux.vnet.ibm.com>
Signed-off-by: Michael Ellerman <mpe@ellerman.id.au>

authored by

Aneesh Kumar K.V and committed by

Michael Ellerman 10 years ago 3b1dbfa1 4aec6ec0

+1 -1

1 changed file

expand all

drivers

misc

cxl

fault.c

+1 -1

drivers/misc/cxl/fault.c

··· 152 152 access = _PAGE_PRESENT; 153 153 if (dsisr & CXL_PSL_DSISR_An_S) 154 154 access |= _PAGE_RW; 155 - if ((!ctx->kernel) || ~(dar & (1ULL << 63))) 155 + if ((!ctx->kernel) || (REGION_ID(dar) == USER_REGION_ID)) 156 156 access |= _PAGE_USER; 157 157 158 158 if (dsisr & DSISR_NOHPTE)