linux

History

Dave Hansen b7c21bc56f x86/pti: Disallow global kernel text with RANDSTRUCT commit 26d35ca6c3776784f8156e1d6f80cc60d9a2a915 RANDSTRUCT derives its hardening benefits from the attacker's lack of knowledge about the layout of kernel data structures. Keep the kernel image non-global in cases where RANDSTRUCT is in use to help keep the layout a secret. Fixes: `8c06c7740` (x86/pti: Leave kernel text global for !PCID) Reported-by: Kees Cook <keescook@google.com> Signed-off-by: Dave Hansen <dave.hansen@linux.intel.com> Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Acked-by: Ingo Molnar <mingo@kernel.org> Cc: Andrea Arcangeli <aarcange@redhat.com> Cc: Juergen Gross <jgross@suse.com> Cc: Josh Poimboeuf <jpoimboe@redhat.com> Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Cc: Peter Zijlstra <peterz@infradead.org> Cc: David Woodhouse <dwmw2@infradead.org> Cc: Hugh Dickins <hughd@google.com> Cc: linux-mm@kvack.org Cc: Linus Torvalds <torvalds@linux-foundation.org> Cc: Borislav Petkov <bp@alien8.de> Cc: Andy Lutomirski <luto@kernel.org> Cc: Nadav Amit <namit@vmware.com> Cc: Dan Williams <dan.j.williams@intel.com> Cc: Arjan van de Ven <arjan@linux.intel.com> Cc: Vlastimil Babka <vbabka@suse.cz> Link: https://lkml.kernel.org/r/20180420222026.D0B4AAC9@viggo.jf.intel.com		2018-04-25 11:02:51 +02:00
..
boot	x86/mm: Do not auto-massage page protections	2018-04-12 09:04:22 +02:00
configs
crypto	crypto: x86/des3_ede - des3_ede_skciphers[] can be static	2018-03-09 22:45:53 +08:00
entry	Kbuild updates for v4.17 (2nd)	2018-04-15 17:21:30 -07:00
events	perf/x86/intel/uncore: Fix SBOX support for Broadwell CPUs	2018-04-20 13:17:50 +02:00
hyperv	x86/hyper-v: allocate and use Virtual Processor Assist Pages	2018-03-28 22:47:06 +02:00
ia32	syscalls/x86: auto-create compat_sys_*() prototypes	2018-04-02 20:16:18 +02:00
include	Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-22 11:40:52 -07:00
kernel	Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-22 11:40:52 -07:00
kvm	Bug fixes, plus a new test case and the associated infrastructure for	2018-04-16 11:24:28 -07:00
lib	Merge branch 'x86-cleanups-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-02 15:16:43 -07:00
math-emu
mm	x86/pti: Disallow global kernel text with RANDSTRUCT	2018-04-25 11:02:51 +02:00
net	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net	2018-03-23 11:31:58 -04:00
oprofile	x86/oprofile: Fix bogus GCC-8 warning in nmi_setup()	2018-02-21 09:54:17 +01:00
pci	Merge branch 'x86-dma-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-02 17:18:45 -07:00
platform	Merge branch 'efi-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-02 17:46:37 -07:00
power	x86/power/64: Fix page-table setup for temporary text mapping	2018-04-20 11:52:00 +02:00
purgatory	kernel/kexec_file.c: move purgatories sha256 to common code	2018-04-13 17:10:28 -07:00
ras
realmode	x86-64/realmode: Add instruction suffix	2018-02-20 09:33:41 +01:00
tools	x86: Treat R_X86_64_PLT32 as R_X86_64_PC32	2018-02-22 09:01:10 -08:00
um	Merge git://git.kernel.org/pub/scm/linux/kernel/git/rw/uml	2018-04-11 16:36:47 -07:00
video
xen	Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-15 16:12:35 -07:00
.gitignore	x86/build: Add arch/x86/tools/insn_decoder_test to .gitignore	2018-02-13 14:10:29 +01:00
Kbuild
Kconfig	Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-15 16:12:35 -07:00
Kconfig.cpu	Merge branch 'x86-pti-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-03-25 07:36:02 -10:00
Kconfig.debug	Merge branch 'x86-cleanups-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-01-30 13:01:09 -08:00
Makefile	Merge branch 'x86-build-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip	2018-04-02 14:37:03 -07:00
Makefile_32.cpu
Makefile.um