Set the arm64 Execute-never bits in more places.
ClosedPublic
Actions

Authored by andrew on Apr 13 2017, 10:33 AM.

Tags

None

Referenced Files

	Unknown Object (File)
	Sep 13 2025, 3:23 PM

	Unknown Object (File)
	Sep 5 2025, 1:34 PM

	Unknown Object (File)
	Sep 4 2025, 8:45 AM

	Unknown Object (File)
	Aug 14 2025, 6:04 PM

	Unknown Object (File)
	Aug 13 2025, 6:36 PM

	Unknown Object (File)
	Aug 11 2025, 3:56 AM

	Unknown Object (File)
	Jul 17 2025, 12:53 AM

	Unknown Object (File)
	Jul 11 2025, 11:55 AM

View All 63 Files

Subscribers

emaste

Details

Reviewers

kib

Group Reviewers

arm64

Commits

rS316761: Set the arm64 Execute-never bits in more places.

Summary

We need to set the Execute-never bits when mapping device memory
as the hardware may perform speculative instruction fetches.

Set the Privileged Execute-ever bit on userspace memory to stop
the kernel if it is tricked into executing it.

Diff Detail

Lint

Lint Passed

Unit

No Test Coverage

Build Status

Buildable 8711
Build 9049: arc lint + arc unit

Event Timeline

andrew created this revision.Apr 13 2017, 10:33 AM

Herald added a subscriber: emaste. · View Herald TranscriptApr 13 2017, 10:33 AM

Harbormaster completed remote builds in B8711: Diff 27401.Apr 13 2017, 10:33 AM

kib accepted this revision.Apr 13 2017, 12:45 PM

kib added inline comments.

sys/arm64/arm64/pmap.c
2731	Why using such rude check, instead of VM_MAXUSER_ADDRESS ?

This revision is now accepted and ready to land.Apr 13 2017, 12:45 PM

andrew added inline comments.Apr 13 2017, 2:47 PM

sys/arm64/arm64/pmap.c
2731	I'm not sure why I did that.

Closed by commit rS316761: Set the arm64 Execute-never bits in more places. (authored by andrew). · Explain WhyApr 13 2017, 3:03 PM

This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

Path

Size

sys/

arm64/

pmap.c

21 lines

Diff 27401

View Options

Set the arm64 Execute-never bits in more places.ClosedPublicActions