linux_dsm_epyc7002

mirror of https://github.com/AuxXxilium/linux_dsm_epyc7002.git synced 2025-03-11 23:27:42 +07:00

History

Dan Williams c7f631cb07 x86/get_user: Use pointer masking to limit speculation Quoting Linus: I do think that it would be a good idea to very expressly document the fact that it's not that the user access itself is unsafe. I do agree that things like "get_user()" want to be protected, but not because of any direct bugs or problems with get_user() and friends, but simply because get_user() is an excellent source of a pointer that is obviously controlled from a potentially attacking user space. So it's a prime candidate for then finding _subsequent_ accesses that can then be used to perturb the cache. Unlike the __get_user() case get_user() includes the address limit check near the pointer de-reference. With that locality the speculation can be mitigated with pointer narrowing rather than a barrier, i.e. array_index_nospec(). Where the narrowing is performed by: cmp %limit, %ptr sbb %mask, %mask and %mask, %ptr With respect to speculation the value of %ptr is either less than %limit or NULL. Co-developed-by: Linus Torvalds <torvalds@linux-foundation.org> Signed-off-by: Dan Williams <dan.j.williams@intel.com> Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Cc: linux-arch@vger.kernel.org Cc: Kees Cook <keescook@chromium.org> Cc: kernel-hardening@lists.openwall.com Cc: gregkh@linuxfoundation.org Cc: Al Viro <viro@zeniv.linux.org.uk> Cc: Andy Lutomirski <luto@kernel.org> Cc: torvalds@linux-foundation.org Cc: alan@linux.intel.com Link: https://lkml.kernel.org/r/151727417469.33451.11804043010080838495.stgit@dwillia2-desk3.amr.corp.intel.com		2018-01-30 21:54:31 +01:00
..
.gitignore
atomic64_32.c
atomic64_386_32.S	x86/debug: Remove perpetually broken, unmaintainable dwarf annotations	2015-06-02 07:57:48 +02:00
atomic64_cx8_32.S	x86/debug: Remove perpetually broken, unmaintainable dwarf annotations	2015-06-02 07:57:48 +02:00
cache-smp.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
checksum_32.S	x86/retpoline/checksum32: Convert assembler indirect jumps	2018-01-12 00:14:31 +01:00
clear_page_64.S	x86/asm: Optimize clear_page()	2017-03-07 08:28:00 +01:00
cmdline.c	x86/boot: Add early cmdline parsing for options with arguments	2017-07-18 11:38:06 +02:00
cmpxchg8b_emu.S	x86: move exports to actual definitions	2016-08-07 23:47:15 -04:00
cmpxchg16b_emu.S	x86/debug: Remove perpetually broken, unmaintainable dwarf annotations	2015-06-02 07:57:48 +02:00
copy_page_64.S	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
copy_user_64.S	x86/uaccess: Optimize copy_user_enhanced_fast_string() for short strings	2017-06-30 09:52:51 +02:00
cpu.c	x86/lib: Audit and remove any unnecessary uses of module.h	2016-07-14 15:06:58 +02:00
csum-copy_64.S	x86/asm: Don't use RBP as a temporary register in csum_partial_copy_generic()	2017-05-05 07:59:24 +02:00
csum-partial_64.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
csum-wrappers_64.c	Merge branch 'x86-headers-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2016-08-01 14:23:42 -04:00
delay.c	x86/entry/64: Make cpu_entry_area.tss read-only	2017-12-17 14:27:52 +01:00
getuser.S	x86/get_user: Use pointer masking to limit speculation	2018-01-30 21:54:31 +01:00
hweight.S	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
inat.c
insn-eval.c	x86/umip: Fix insn_get_code_seg_params()'s return value	2017-11-23 20:17:59 +01:00
insn.c	x86/insn: Add AVX-512 support to the instruction decoder	2016-07-21 09:37:11 -03:00
iomap_copy_64.S	x86/debug: Remove perpetually broken, unmaintainable dwarf annotations	2015-06-02 07:57:48 +02:00
kaslr.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
Makefile	Linux 4.15	2018-01-30 15:08:27 +01:00
memcpy_32.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
memcpy_64.S	x86/mce: Fix copy/paste error in exception table entries	2017-03-22 08:43:25 +01:00
memmove_64.S	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
memset_64.S	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
misc.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
mmx_32.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
msr-reg-export.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
msr-reg.S	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
msr-smp.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
msr.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
putuser.S	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
retpoline.S	x86/retpoline: Simplify vmexit_fill_RSB()	2018-01-27 19:10:45 +01:00
rwsem.S	locking/arch, x86: Add __down_read_killable()	2017-10-10 11:50:15 +02:00
string_32.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
strstr_32.c	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
usercopy_32.c	x86/uaccess: Use __uaccess_begin_nospec() and uaccess_try_nospec	2018-01-30 21:54:31 +01:00
usercopy_64.c	x86, dax, libnvdimm: remove wb_cache_pmem() indirection	2017-06-15 14:35:24 -07:00
usercopy.c	x86: switch to RAW_COPY_USER	2017-03-29 12:06:28 -04:00
x86-opcode-map.txt	x86/decoder: Fix and update the opcodes map	2017-12-15 13:45:20 +01:00