lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Tue, 5 Dec 2017 10:34:08 +0100 (CET) From: Thomas Gleixner <tglx@...utronix.de> To: Andy Lutomirski <luto@...nel.org> cc: LKML <linux-kernel@...r.kernel.org>, X86 ML <x86@...nel.org>, Linus Torvalds <torvalds@...ux-foundation.org>, Peter Zijlstra <peterz@...radead.org>, Dave Hansen <dave.hansen@...el.com>, Borislav Petkov <bpetkov@...e.de>, Greg KH <gregkh@...uxfoundation.org>, Kees Cook <keescook@...gle.com>, Hugh Dickins <hughd@...gle.com>, Brian Gerst <brgerst@...il.com>, Josh Poimboeuf <jpoimboe@...hat.com>, Denys Vlasenko <dvlasenk@...hat.com>, Rik van Riel <riel@...hat.com>, Boris Ostrovsky <boris.ostrovsky@...cle.com>, Juergen Gross <jgross@...e.com>, David Laight <David.Laight@...lab.com>, Eduardo Valentin <eduval@...zon.com>, aliguori@...zon.com, Will Deacon <will.deacon@....com>, Daniel Gruss <daniel.gruss@...k.tugraz.at>, Dave Hansen <dave.hansen@...ux.intel.com>, Ingo Molnar <mingo@...nel.org>, moritz.lipp@...k.tugraz.at, "linux-mm@...ck.org" <linux-mm@...ck.org>, Borislav Petkov <bp@...en8.de>, michael.schwarz@...k.tugraz.at, richard.fellner@...dent.tugraz.at Subject: Re: [patch 57/60] x86/mm/kpti: Add Kconfig On Mon, 4 Dec 2017, Thomas Gleixner wrote: > On Mon, 4 Dec 2017, Andy Lutomirski wrote: > > On Mon, Dec 4, 2017 at 6:08 AM, Thomas Gleixner <tglx@...utronix.de> wrote: > > > --- a/security/Kconfig > > > +++ b/security/Kconfig > > > @@ -54,6 +54,16 @@ config SECURITY_NETWORK > > > implement socket and networking access controls. > > > If you are unsure how to answer this question, answer N. > > > > > > +config KERNEL_PAGE_TABLE_ISOLATION > > > + bool "Remove the kernel mapping in user mode" > > > + depends on X86_64 && JUMP_LABEL > > > > select JUMP_LABEL perhaps? > > Silly me. Yes. Peter just pointed out that we switched everything to cpu_has() which is using alternatives so jump label is not longer required at all. Thanks, tglx
Powered by blists - more mailing lists