Diffusion FreeBSD src repository - subversion rS328011

Provide some mitigation against CVE-2017-5715 by clearing registers
rS328011
Actions

Description

Provide some mitigation against CVE-2017-5715 by clearing registers
upon returning from the guest which aren't immediately clobbered by
the host. This eradicates any remaining guest contents limiting their
usefulness in an exploit gadget.

This was inspired by this linux commit:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5b6c02f38315b720c593c6079364855d276886aa

Reviewed by: grehan, rgrimes
Sponsored by: Dell EMC Isilon
Differential Revision: https://reviews.freebsd.org/D13573

Details

Provenance

tychon

Authored on

Reviewer

grehan

Differential Revision

D13573: recognize a pending virtual interrupt while emulating halt instruction

Parents

rS328010: Pull in r322473 from upstream llvm trunk (by Andrei Elovikov):

Branches

Unknown

Tags

Unknown

Event Timeline

tychon committed rS328011: Provide some mitigation against CVE-2017-5715 by clearing registers.Jan 15 2018, 6:37 PM

emaste mentioned this in D13919: mitigate against CVE-2017-5715 by clearing registers upon returning from the guest.Jan 15 2018, 8:21 PM

Changes (2)

Path

Size

head/

sys/

amd64/

vmm/

amd/

svm_support.S

intel/

vmx_support.S

rS328011

View Options

head/sys/amd64/vmm/amd/svm_support.S