public inbox for devel@edk2.groups.io
 help / color / mirror / Atom feed
* [PATCH v2 0/6] Implement heap guard feature
@ 2017-10-17 13:29 Jian J Wang
  2017-10-17 13:29 ` [PATCH v2 1/6] MdeModulePkg/DxeCore: Implement heap guard feature for UEFI Jian J Wang
                   ` (5 more replies)
  0 siblings, 6 replies; 13+ messages in thread
From: Jian J Wang @ 2017-10-17 13:29 UTC (permalink / raw)
  To: edk2-devel
  Cc: Star Zeng, Eric Dong, Jiewen Yao, Michael Kinney, Ayellet Wolman

> Patch V2 changes:
> a. Remove local variable initializer with memory copy from globals
> b. Change map table dump code to use DEBUG_PAGE|DEBUG_POOL level
>    message 
> c. Fix malfunction in 32-bit boot mode
> d. Add comment for the use of mOnGuarding
> e. Change name of function InitializePageTableLib to 
>    InitializePageTableGlobals
> f. Add code in 32-bit code to bypass setting page table to read-only
> g. Coding style clean-up
>

This feature makes use of paging mechanism to add a hidden (not present)
page just before and after the allocated memory block. If the code tries
to access memory outside of the allocated part, page fault exception will
be triggered.

This feature is disabled by default and is not recommended to enable it
in production build of BIOS.

Cc: Star Zeng <star.zeng@intel.com>
Cc: Eric Dong <eric.dong@intel.com>
Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Michael Kinney <michael.d.kinney@intel.com>
Cc: Ayellet Wolman <ayellet.wolman@intel.com>
Suggested-by: Ayellet Wolman <ayellet.wolman@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Jian J Wang <jian.j.wang@intel.com>

Jian J Wang (6):
  MdeModulePkg/DxeCore: Implement heap guard feature for UEFI
  MdeModulePkg/PiSmmCore: Implement heap guard feature for SMM mode
  MdeModulePkg/MdeModulePkg.dec,.uni: Add heap guard related PCDs and
    string tokens
  UefiCpuPkg/CpuDxe: Reduce debug message
  UefiCpuPkg/PiSmmCpuDxeSmm: Disable page table protection
  MdeModulePkg/DxeIpl: Enable paging for heap guard

 MdeModulePkg/Core/Dxe/DxeMain.inf               |    4 +
 MdeModulePkg/Core/Dxe/Mem/HeapGuard.c           | 1184 +++++++++++++++++++
 MdeModulePkg/Core/Dxe/Mem/HeapGuard.h           |  380 ++++++
 MdeModulePkg/Core/Dxe/Mem/Imem.h                |   38 +-
 MdeModulePkg/Core/Dxe/Mem/Page.c                |  129 +-
 MdeModulePkg/Core/Dxe/Mem/Pool.c                |  154 ++-
 MdeModulePkg/Core/DxeIplPeim/DxeIpl.inf         |    1 +
 MdeModulePkg/Core/DxeIplPeim/Ia32/DxeLoadFunc.c |   29 +-
 MdeModulePkg/Core/PiSmmCore/Misc/HeapGuard.c    | 1446 +++++++++++++++++++++++
 MdeModulePkg/Core/PiSmmCore/Misc/HeapGuard.h    |  400 +++++++
 MdeModulePkg/Core/PiSmmCore/Misc/PageTable.c    |  704 +++++++++++
 MdeModulePkg/Core/PiSmmCore/Misc/PageTable.h    |  174 +++
 MdeModulePkg/Core/PiSmmCore/Page.c              |   51 +-
 MdeModulePkg/Core/PiSmmCore/PiSmmCore.c         |   12 +-
 MdeModulePkg/Core/PiSmmCore/PiSmmCore.h         |   80 +-
 MdeModulePkg/Core/PiSmmCore/PiSmmCore.inf       |    8 +
 MdeModulePkg/Core/PiSmmCore/Pool.c              |   75 +-
 MdeModulePkg/MdeModulePkg.dec                   |   57 +
 MdeModulePkg/MdeModulePkg.uni                   |   58 +
 UefiCpuPkg/CpuDxe/CpuPageTable.c                |    5 +-
 UefiCpuPkg/PiSmmCpuDxeSmm/Ia32/PageTbl.c        |    7 +
 UefiCpuPkg/PiSmmCpuDxeSmm/PiSmmCpuDxeSmm.inf    |    1 +
 UefiCpuPkg/PiSmmCpuDxeSmm/X64/PageTbl.c         |    3 +-
 23 files changed, 4904 insertions(+), 96 deletions(-)
 create mode 100644 MdeModulePkg/Core/Dxe/Mem/HeapGuard.c
 create mode 100644 MdeModulePkg/Core/Dxe/Mem/HeapGuard.h
 create mode 100644 MdeModulePkg/Core/PiSmmCore/Misc/HeapGuard.c
 create mode 100644 MdeModulePkg/Core/PiSmmCore/Misc/HeapGuard.h
 create mode 100644 MdeModulePkg/Core/PiSmmCore/Misc/PageTable.c
 create mode 100644 MdeModulePkg/Core/PiSmmCore/Misc/PageTable.h

-- 
2.14.1.windows.1



^ permalink raw reply	[flat|nested] 13+ messages in thread

end of thread, other threads:[~2017-10-20  1:45 UTC | newest]

Thread overview: 13+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2017-10-17 13:29 [PATCH v2 0/6] Implement heap guard feature Jian J Wang
2017-10-17 13:29 ` [PATCH v2 1/6] MdeModulePkg/DxeCore: Implement heap guard feature for UEFI Jian J Wang
2017-10-17 13:29 ` [PATCH v2 2/6] MdeModulePkg/PiSmmCore: Implement heap guard feature for SMM mode Jian J Wang
2017-10-18  5:07   ` Yao, Jiewen
2017-10-18  5:51     ` Wang, Jian J
2017-10-18  5:54       ` Yao, Jiewen
2017-10-20  0:54         ` Wang, Jian J
2017-10-20  1:36           ` Yao, Jiewen
2017-10-20  1:49             ` Wang, Jian J
2017-10-17 13:29 ` [PATCH v2 3/6] MdeModulePkg/MdeModulePkg.dec, .uni: Add heap guard related PCDs and string tokens Jian J Wang
2017-10-17 13:29 ` [PATCH v2 4/6] UefiCpuPkg/CpuDxe: Reduce debug message Jian J Wang
2017-10-17 13:29 ` [PATCH v2 5/6] UefiCpuPkg/PiSmmCpuDxeSmm: Disable page table protection Jian J Wang
2017-10-17 13:29 ` [PATCH v2 6/6] MdeModulePkg/DxeIpl: Enable paging for heap guard Jian J Wang

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox