d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
0faae8b922
freebsd-dev/sys
History
Tycho Nightingale 91fe5fe7e7 Provide some mitigation against CVE-2017-5715 by clearing registers 
upon returning from the guest which aren't immediately clobbered by
the host.  This eradicates any remaining guest contents limiting their
usefulness in an exploit gadget.

This was inspired by this linux commit:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5b6c02f38315b720c593c6079364855d276886aa

Reviewed by:	grehan, rgrimes
Sponsored by:	Dell EMC Isilon
Differential Revision:	https://reviews.freebsd.org/D13573
2018-01-15 18:37:03 +00:00
..
amd64 Provide some mitigation against CVE-2017-5715 by clearing registers 2018-01-15 18:37:03 +00:00
arm allwinner: mmc: Multiple improvement 2018-01-14 22:05:29 +00:00
arm64 Add support for NUMA domains to bus dma tags. This causes all memory 2018-01-12 23:34:16 +00:00
bsm sys: further adoption of SPDX licensing ID tags. 2017-11-20 19:43:44 +00:00
cam geom_disk / scsi_da: deny opening write-protected disks for writing 2018-01-15 11:20:00 +00:00
cddl Use the thread's ucred struct when fetching jid or jailname. 2018-01-14 17:55:40 +00:00
compat Regenerate auto-generated files 2018-01-12 23:06:35 +00:00
conf Move VM_NUMA_ALLOC and DEVICE_NUMA under the single global config option NUMA. 2018-01-14 03:36:03 +00:00
contrib zstd: Use mallocarray(9) for calloc macro. 2018-01-13 19:02:51 +00:00
crypto Merge ^/head r327624 through r327885. 2018-01-12 18:23:35 +00:00
ddb Implement 'domainset', a cpuset based NUMA policy mechanism. This allows 2018-01-12 22:48:23 +00:00
dev When re-evaluating cpu_features, also re-print CPU identification. 2018-01-14 12:33:05 +00:00
dts Add a rudimentary PWM driver for the RaspberryPi. 2018-01-14 20:36:21 +00:00
fs Add metadata_csum feature support. 2018-01-14 20:46:39 +00:00
gdb sys/gdb: further adoption of SPDX licensing ID tags. 2017-11-27 15:16:59 +00:00
geom geom_disk / scsi_da: deny opening write-protected disks for writing 2018-01-15 11:20:00 +00:00
gnu Introduce bwn(4) support for the bhnd(4) bus. 2017-12-02 02:21:27 +00:00
i386 Enable VIMAGE in i386 GENERIC (revert r327840) 2018-01-14 16:04:51 +00:00
isa On further testing on actual machines with this hardware, we should 2017-12-30 08:16:31 +00:00
kern Add RTC clock conversions for BCD values, with non-panic validation. 2018-01-14 17:01:37 +00:00
kgssapi sys/kgssapi: general adoption of SPDX licensing ID tags. 2017-11-27 15:49:00 +00:00
libkern SPDX: fix wrong license ID tag in libkern. 2017-12-28 01:20:30 +00:00
mips Add support for NUMA domains to bus dma tags. This causes all memory 2018-01-12 23:34:16 +00:00
modules Add a rudimentary PWM driver for the RaspberryPi. 2018-01-14 20:36:21 +00:00
net Disabled the use of flowid for lagg by default 2018-01-04 20:05:47 +00:00
net80211 net80211: sanitize input for ieee80211_output() 2017-12-30 00:40:34 +00:00
netgraph sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
netinet libalias: small memory allocation cleanups. 2018-01-12 23:12:30 +00:00
netinet6 Fix some typos. 2017-12-28 20:40:56 +00:00
netipsec Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
netpfil Implement 'domainset', a cpuset based NUMA policy mechanism. This allows 2018-01-12 22:48:23 +00:00
netsmb sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
nfs Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
nfsclient sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
nfsserver sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
nlm Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
ofed sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
opencrypto Change the type of 'crp_opaque' from caddr_t to void *. 2018-01-11 18:09:24 +00:00
powerpc Install the SLB miss trap-handling code in the SLB-based MMU driver set up, 2018-01-15 16:08:34 +00:00
riscv Implement NUMA support in uma(9) and malloc(9). Allocations from specific 2018-01-12 23:25:05 +00:00
rpc Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
security Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
sparc64 Implement NUMA support in uma(9) and malloc(9). Allocations from specific 2018-01-12 23:25:05 +00:00
sys Add RTC clock conversions for BCD values, with non-panic validation. 2018-01-14 17:01:37 +00:00
teken sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
tests
tools embed_mfs: correctly test grep return value 2018-01-03 19:22:10 +00:00
ufs Softlink inodes can own buffers with dependencies. 2018-01-11 13:37:45 +00:00
vm Move VM_NUMA_ALLOC and DEVICE_NUMA under the single global config option NUMA. 2018-01-14 03:36:03 +00:00
x86 Convert the x86 RTC driver to use new validated BCD<->timespec conversions. 2018-01-15 16:40:43 +00:00
xdr sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
xen sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
Makefile Move sys/boot to stand. Fix all references to new location 2017-11-14 23:02:19 +00:00