Diffusion FreeBSD src repository - subversion rS337774

Reserve page at the physical address zero on amd64.
rS337774
Actions

Description

Reserve page at the physical address zero on amd64.

We always zero the invalidated PTE/PDE for superpage, which means that
L1TF CPU vulnerability (CVE-2018-3620) can be only used for reading
from the page at zero.

Note that both i386 and amd64 exclude the page from phys_avail[]
array, so this change is redundant, but I think that phys_avail[] on
UEFI-boot does not need to do that. Eventually the blacklisting
should be made conditional on CPUs which report that they are not
vulnerable to L1TF.

Reviewed by: emaste. jhb
Sponsored by: The FreeBSD Foundation

Details

Provenance

kib	Authored on

Reviewer

jhb

Parents

rS337773: amd64: ensure that curproc->p_vmspace pmap always matches PCPU

Branches

Unknown

Tags

Unknown

Event Timeline

kib committed rS337774: Reserve page at the physical address zero on amd64..Aug 14 2018, 5:14 PM

Changes (1)

Path

Size

head/

sys/

amd64/

pmap.c

rS337774

View Options

head/sys/amd64/amd64/pmap.c