git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/commit

author	Will Deacon <will.deacon@arm.com>
	Tue, 14 Nov 2017 16:19:39 +0000 (16:19 +0000)
committer	Kleber Sacilotto de Souza <kleber.souza@canonical.com>
	Mon, 5 Feb 2018 17:23:02 +0000 (18:23 +0100)
commit	50083b5caa6be0ccd6aeef4df6e8b92ecf418cd1
tree	28ccc24cb3659373c5c2ca4db745aed9c1b14ab6	tree
parent	6be0285006eb7e8387c8a9283a85fe61fd45ef37	commit \| diff

arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry

CVE-2017-5754 ARM64 KPTI fixes

Although CONFIG_UNMAP_KERNEL_AT_EL0 does make KASLR more robust, it's
actually more useful as a mitigation against speculation attacks that
can leak arbitrary kernel data to userspace through speculation.

Reword the Kconfig help message to reflect this, and make the option
depend on EXPERT so that it is on by default for the majority of users.

Signed-off-by: Will Deacon <will.deacon@arm.com>
Signed-off-by: Catalin Marinas <catalin.marinas@arm.com>
(cherry picked from commit 0617052ddde355ee663b2f048e67dd381e5ebd6a)
Signed-off-by: Paolo Pisati <paolo.pisati@canonical.com>
Signed-off-by: Thadeu Lima de Souza Cascardo <cascardo@canonical.com>
Acked-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
Acked-by: Brad Figg <brad.figg@canonical.com>
Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>