d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
b3327f62f0
freebsd-dev/sys
History
Ed Maste b3327f62f0 Enable KPTI by default on amd64 for non-AMD CPUs 
Kernel Page Table Isolation (KPTI) was introduced in r328083 as a
mitigation for the 'Meltdown' vulnerability.  AMD CPUs are not affected,
per https://www.amd.com/en/corporate/speculative-execution:

    We believe AMD processors are not susceptible due to our use of
    privilege level protections within paging architecture and no
    mitigation is required.

Thus default KPTI to off for AMD CPUs, and to on for others.  This may
be refined later as we obtain more specific information on the sets of
CPUs that are and are not affected.

Submitted by:	Mitchell Horne
Reviewed by:	cem
Relnotes:	Yes
Security:	CVE-2017-5754
Sponsored by:	The FreeBSD Foundation
Differential Revision:	https://reviews.freebsd.org/D13971
2018-01-19 15:42:34 +00:00
..
amd64 Enable KPTI by default on amd64 for non-AMD CPUs 2018-01-19 15:42:34 +00:00
arm arm: make some use of mallocarray(9). 2018-01-15 21:09:58 +00:00
arm64 Set the base address of translation table 0. 2018-01-18 16:20:09 +00:00
bsm sys: further adoption of SPDX licensing ID tags. 2017-11-20 19:43:44 +00:00
cam Revert ABI breakage to CAM that came in with MMC/SD support in r320844. 2018-01-19 15:32:27 +00:00
cddl Use the thread's ucred struct when fetching jid or jailname. 2018-01-14 17:55:40 +00:00
compat ndis: make some use of mallocarray(9). 2018-01-15 21:11:38 +00:00
conf Use ln -n instead of -h to allow building the kernel on Linux 2018-01-16 21:43:57 +00:00
contrib libnv: Use mallocarray(9) for the nv_calloc. 2018-01-19 14:50:53 +00:00
crypto Add ccp(4): experimental driver for AMD Crypto Co-Processor 2018-01-18 22:01:30 +00:00
ddb Implement 'domainset', a cpuset based NUMA policy mechanism. This allows 2018-01-12 22:48:23 +00:00
dev Add new USB ID to U3G driver. 2018-01-19 13:06:36 +00:00
dts Add a rudimentary PWM driver for the RaspberryPi. 2018-01-14 20:36:21 +00:00
fs nfs: Do not printf each time a lock structure is freed during module unload 2018-01-18 15:28:49 +00:00
gdb sys/gdb: further adoption of SPDX licensing ID tags. 2017-11-27 15:16:59 +00:00
geom gnop(8): add the ability to set a nop provider's physical path 2018-01-18 05:57:10 +00:00
gnu misc geom and gnu: make some use of mallocarray(9). 2018-01-15 21:23:16 +00:00
i386 Use long for the last argument to VOP_PATHCONF rather than a register_t. 2018-01-17 22:36:58 +00:00
isa On further testing on actual machines with this hardware, we should 2017-12-30 08:16:31 +00:00
kern correct read-ahead calculations in vfs_bio_getpages 2018-01-18 12:59:04 +00:00
kgssapi sys/kgssapi: general adoption of SPDX licensing ID tags. 2017-11-27 15:49:00 +00:00
libkern SPDX: fix wrong license ID tag in libkern. 2017-12-28 01:20:30 +00:00
mips Fix build after r328020. 2018-01-16 06:04:39 +00:00
modules Unbreak i386 build 2018-01-19 04:34:06 +00:00
net net*: make some use of mallocarray(9). 2018-01-15 21:21:51 +00:00
net80211 net80211: sanitize input for ieee80211_output() 2017-12-30 00:40:34 +00:00
netgraph netgraph: make some use of mallocarray(9). 2018-01-15 21:19:21 +00:00
netinet Fix a bug related to fast retransmissions. 2018-01-16 21:58:38 +00:00
netinet6 net*: make some use of mallocarray(9). 2018-01-15 21:21:51 +00:00
netipsec Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
netpfil Add UDPLite support to ipfw(4). 2018-01-19 12:50:03 +00:00
netsmb sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
nfs Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
nfsclient sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
nfsserver sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
nlm Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
ofed sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
opencrypto Split crp_buf into a union. 2018-01-16 19:41:18 +00:00
powerpc Call platform_smp_ap_init before decr_ap_init 2018-01-18 08:34:20 +00:00
riscv Implement NUMA support in uma(9) and malloc(9). Allocations from specific 2018-01-12 23:25:05 +00:00
rpc Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
security Do pass removing some write-only variables from the kernel. 2017-12-25 04:48:39 +00:00
sparc64 Implement NUMA support in uma(9) and malloc(9). Allocations from specific 2018-01-12 23:25:05 +00:00
sys Add Elf_Nhdr definition to match NetBSD, OpenBSD, Linux 2018-01-18 21:19:57 +00:00
teken sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
tests
tools embed_mfs: correctly test grep return value 2018-01-03 19:22:10 +00:00
ufs ufs: use mallocarray(9). 2018-01-17 18:18:33 +00:00
vm Move VM_NUMA_ALLOC and DEVICE_NUMA under the single global config option NUMA. 2018-01-14 03:36:03 +00:00
x86 Enable KPTI by default on amd64 for non-AMD CPUs 2018-01-19 15:42:34 +00:00
xdr sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
xen sys: general adoption of SPDX licensing ID tags. 2017-11-27 15:23:17 +00:00
Makefile Move sys/boot to stand. Fix all references to new location 2017-11-14 23:02:19 +00:00