Diffusion FreeBSD src repository - subversion rS332306

MFC r330110: Add kernel retpoline option for amd64
rS332306
Actions

Description

MFC r330110: Add kernel retpoline option for amd64

Retpoline is a compiler-based mitigation for CVE-2017-5715, also known
as Spectre V2, that protects against speculative execution branch target
injection attacks.

In this commit it is disabled by default, but will be changed in a
followup commit.

MFC r330962: Remove KERNEL_RETPOLINE from BROKEN_OPTIONS on i386

Clang will compile both amd64 and i386 with retpoline.

Details

Provenance

emaste

Authored on

Parents

rS332305: Document ofw_bus_subr helpers "compatible" and "status" properties

Branches

Unknown

Tags

Unknown

Event Timeline

emaste committed rS332306: MFC r330110: Add kernel retpoline option for amd64.Apr 8 2018, 8:54 PM

Changes (5)

Path

Size

stable/

11/

sys/

conf/

kern.mk

kern.opts.mk

	stable/	11/	tools/	build/	options/
		head/	tools/	build/	options/

WITHOUT_KERNEL_RETPOLINE

WITH_KERNEL_RETPOLINE

rS332306

View Options

stable/11/

View Options

stable/11/sys/conf/kern.mk

View Options

stable/11/sys/conf/kern.opts.mk

View Options

stable/11/tools/build/options/WITHOUT_KERNEL_RETPOLINE

View Options

stable/11/tools/build/options/WITH_KERNEL_RETPOLINE

MFC r330110: Add kernel retpoline option for amd64rS332306Actions

Description

Details

Event Timeline

Changes (5)

rS332306

stable/11/

stable/11/sys/conf/kern.mk

stable/11/sys/conf/kern.opts.mk

stable/11/tools/build/options/WITHOUT_KERNEL_RETPOLINE

stable/11/tools/build/options/WITH_KERNEL_RETPOLINE

MFC r330110: Add kernel retpoline option for amd64
rS332306
Actions