angler-fishThe Vulnerability History Project

s390: remove all code using the access register mode

      The vdso code for the getcpu() and the clock_gettime() call use the access
register mode to access the per-CPU vdso data page with the current code.

An alternative to the complicated AR mode is to use the secondary space
mode. This makes the vdso faster and quite a bit simpler. The downside is
that the uaccess code has to be changed quite a bit.

Which instructions are used depends on the machine and what kind of uaccess
operation is requested. The instruction dictates which ASCE value needs
to be loaded into %cr1 and %cr7.

The different cases:

* User copy with MVCOS for z10 and newer machines
  The MVCOS instruction can copy between the primary space (aka user) and
  the home space (aka kernel) directly. For set_fs(KERNEL_DS) the kernel
  ASCE is loaded into %cr1. For set_fs(USER_DS) the user space is already
  loaded in %cr1.

* User copy with MVCP/MVCS for older machines
  To be able to execute the MVCP/MVCS instructions the ke
by Caleb the Puma 2017-08-22 10:08:22 UTC
commit 0aaba41b58bc5f3074c0c0a6136b9500b5e29e19
Linux Kernel VCC Race Conditions CVE-2020-11884
arch/s390/include/asm/futex.h
+6 -3
arch/s390/include/asm/lowcore.h
+14 -19
arch/s390/include/asm/mmu_context.h
+16 -20
arch/s390/include/asm/processor.h
+1 -3
arch/s390/include/asm/uaccess.h
+9 -20
arch/s390/kernel/asm-offsets.c
+1 -1
arch/s390/kernel/entry.S
+21 -5
arch/s390/kernel/head64.S
+1 -1
arch/s390/kernel/vdso.c
+4 -40
arch/s390/kernel/vdso32/getcpu.S
+2 -14
arch/s390/kernel/vdso64/clock_gettime.S
+4 -15
arch/s390/kernel/vdso64/getcpu.S
+2 -13
arch/s390/lib/uaccess.c
+80 -10
arch/s390/mm/fault.c
+65 -43
arch/s390/mm/init.c
+1
arch/s390/mm/pgalloc.c
+1 -3
expand_less