Re: [PATCH 3/4] x86: call verify_cpu during 32bit CPU startup

From: Kees Cook
Date: Tue Nov 09 2010 - 14:19:18 EST

Next message: Jeff Layton: "Re: [PATCH] clear PageError bit in msync & fsync"
Previous message: Kevin Hilman: "Re: [PATCH] PM: Hide OPP configuration when SoCs do not provide an implementation"
In reply to: Pekka Enberg: "Re: [PATCH 3/4] x86: call verify_cpu during 32bit CPU startup"
Next in thread: Pekka Enberg: "Re: [PATCH 3/4] x86: call verify_cpu during 32bit CPU startup"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Nov 09, 2010 at 09:09:18PM +0200, Pekka Enberg wrote:
> On Tue, Nov 9, 2010 at 8:15 PM, Kees Cook <kees.cook@xxxxxxxxxxxxx> wrote:
> > The XD_DISABLE-clearing side-effect needs to happen on 32bit CPU
> > start-up as well.
> >
> > Signed-off-by: Kees Cook <kees.cook@xxxxxxxxxxxxx>
>
> The patch description here is pretty damn terse. Why do we need the
> clearing for? Does not clearing XD_DISABLE cause some problem?

The clearing needs to happen for both 32bit and 64bit, but the 32bit init
routines were not calling verify_cpu() yet. This adds that path to gain the
side-effect. (See patch 0 for why clearing XD_DISABLE is important.)

--
Kees Cook
Ubuntu Security Team
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jeff Layton: "Re: [PATCH] clear PageError bit in msync & fsync"
Previous message: Kevin Hilman: "Re: [PATCH] PM: Hide OPP configuration when SoCs do not provide an implementation"
In reply to: Pekka Enberg: "Re: [PATCH 3/4] x86: call verify_cpu during 32bit CPU startup"
Next in thread: Pekka Enberg: "Re: [PATCH 3/4] x86: call verify_cpu during 32bit CPU startup"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]