git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/commit

author	Will Deacon <will.deacon@arm.com>
	Tue, 14 Nov 2017 16:19:39 +0000 (16:19 +0000)
committer	Khalid Elmously <khalid.elmously@canonical.com>
	Tue, 27 Feb 2018 16:32:50 +0000 (11:32 -0500)
commit	e1e9d52bb570b449cf117fd4c00d9c219a027fca
tree	5d470902c7bf68a4dbfd666032bd0e51d298284c	tree
parent	7d371c2df2b84b20a82c3c4b93dc1721a2518951	commit \| diff

arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry

Commit 0617052ddde3 upstream.

Although CONFIG_UNMAP_KERNEL_AT_EL0 does make KASLR more robust, it's
actually more useful as a mitigation against speculation attacks that
can leak arbitrary kernel data to userspace through speculation.

Reword the Kconfig help message to reflect this, and make the option
depend on EXPERT so that it is on by default for the majority of users.

Signed-off-by: Will Deacon <will.deacon@arm.com>
Signed-off-by: Catalin Marinas <catalin.marinas@arm.com>
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
(cherry picked from commit 5e319f4533bfa8df7f03df501d22a169b2f03719)

CVE-2017-5753
CVE-2017-5715
CVE-2017-5754

Signed-off-by: Paolo Pisati <paolo.pisati@canonical.com>
Acked-by: Brad Figg <brad.figg@canonical.com>
Acked-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>