Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.19 / f21b53b20c754021935ea43364dbf53778eeba32
commitf21b53b20c754021935ea43364dbf53778eeba32[log] [tgz]
authorKees Cook <keescook@chromium.org>Thu May 03 14:37:54 2018 -0700
committerThomas Gleixner <tglx@linutronix.de>Sat May 05 00:51:45 2018 +0200
tree56c873b4f7dc9b7561858f8e7e4a6bfc2ba8eeeb
parent8bf37d8c067bb7eb8e7c381bdadf9bd89182b6bc [diff]
x86/speculation: Make "seccomp" the default mode for Speculative Store Bypass

Unless explicitly opted out of, anything running under seccomp will have
SSB mitigations enabled. Choosing the "prctl" mode will disable this.

[ tglx: Adjusted it to the new arch_seccomp_spec_mitigate() mechanism ]

Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
3 files changed
tree: 56c873b4f7dc9b7561858f8e7e4a6bfc2ba8eeeb
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. LICENSES/
  15. mm/
  16. net/
  17. samples/
  18. scripts/
  19. security/
  20. sound/
  21. tools/
  22. usr/
  23. virt/
  24. .clang-format
  25. .cocciconfig
  26. .get_maintainer.ignore
  27. .gitattributes
  28. .gitignore
  29. .mailmap
  30. COPYING
  31. CREDITS
  32. Kbuild
  33. Kconfig
  34. MAINTAINERS
  35. Makefile
  36. README