From 0b7a2e0a5a6875f6e44d0ac0b0dc5e5d27205f86 Mon Sep 17 00:00:00 2001
From: Andreas Kling <awesomekling@gmail.com>
Date: Wed, 25 Dec 2019 22:23:10 +0100
Subject: [PATCH] Kernel: Set NX bit for virtual addresses 0-1MB and 2-8MB

This removes the ability to jump into kmalloc memory, etc.
Only the kernel image itself is allowed to exec, located between 1-2MB.
---
 Kernel/VM/MemoryManager.cpp | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/Kernel/VM/MemoryManager.cpp b/Kernel/VM/MemoryManager.cpp
index 42c33ae1816..2a34ca13706 100644
--- a/Kernel/VM/MemoryManager.cpp
+++ b/Kernel/VM/MemoryManager.cpp
@@ -56,6 +56,14 @@ void MemoryManager::initialize_paging()
     // Every process shares these mappings.
     create_identity_mapping(kernel_page_directory(), VirtualAddress(PAGE_SIZE), (8 * MB) - PAGE_SIZE);
 
+    // Disable execution from 0MB through 1MB (BIOS data, legacy things, ...)
+    for (size_t i = 0; i < (1 * MB); ++i)
+        ensure_pte(kernel_page_directory(), VirtualAddress(i)).set_execute_disabled(true);
+
+    // Disable execution from 2MB through 8MB (kmalloc, kmalloc_eternal, slabs, page tables, ...)
+    for (size_t i = 1; i < 4; ++i)
+        kernel_page_directory().table().directory(0)[i].set_execute_disabled(true);
+
     // FIXME: We should move everything kernel-related above the 0xc0000000 virtual mark.
 
     // Basic physical memory map: