summaryrefslogtreecommitdiffstats
path: root/arch/frv
diff options
context:
space:
mode:
authorAndy Lutomirski <luto@amacapital.net>2014-11-23 03:00:33 +0100
committerLinus Torvalds <torvalds@linux-foundation.org>2014-11-23 22:56:19 +0100
commitb645af2d5905c4e32399005b867987919cbfc3ae (patch)
tree63484dfff842bb500e4aaf47f7f50df830fbfe03 /arch/frv
parentx86_64, traps: Stop using IST for #SS (diff)
downloadlinux-b645af2d5905c4e32399005b867987919cbfc3ae.tar.xz
linux-b645af2d5905c4e32399005b867987919cbfc3ae.zip
x86_64, traps: Rework bad_iret
It's possible for iretq to userspace to fail. This can happen because of a bad CS, SS, or RIP. Historically, we've handled it by fixing up an exception from iretq to land at bad_iret, which pretends that the failed iret frame was really the hardware part of #GP(0) from userspace. To make this work, there's an extra fixup to fudge the gs base into a usable state. This is suboptimal because it loses the original exception. It's also buggy because there's no guarantee that we were on the kernel stack to begin with. For example, if the failing iret happened on return from an NMI, then we'll end up executing general_protection on the NMI stack. This is bad for several reasons, the most immediate of which is that general_protection, as a non-paranoid idtentry, will try to deliver signals and/or schedule from the wrong stack. This patch throws out bad_iret entirely. As a replacement, it augments the existing swapgs fudge into a full-blown iret fixup, mostly written in C. It's should be clearer and more correct. Signed-off-by: Andy Lutomirski <luto@amacapital.net> Reviewed-by: Thomas Gleixner <tglx@linutronix.de> Cc: stable@vger.kernel.org Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Diffstat (limited to 'arch/frv')
0 files changed, 0 insertions, 0 deletions