subject:"\[Xen\-devel\] \[PATCH v6 4\/4\] x86\/ldt\: Make modify_ldt optional"

Re: [Xen-devel] [PATCH v6 4/4] x86/ldt: Make modify_ldt optional

2015-07-31 Thread Ingo Molnar

* Andy Lutomirski wrote: > The modify_ldt syscall exposes a large attack surface and is > unnecessary for modern userspace. Make it optional. > > Reviewed-by: Kees Cook > Signed-off-by: Andy Lutomirski > --- > arch/x86/Kconfig | 17 + > arch/x86/include/asm

[Xen-devel] [PATCH v6 4/4] x86/ldt: Make modify_ldt optional

2015-07-30 Thread Andy Lutomirski

The modify_ldt syscall exposes a large attack surface and is unnecessary for modern userspace. Make it optional. Reviewed-by: Kees Cook Signed-off-by: Andy Lutomirski --- arch/x86/Kconfig | 17 + arch/x86/include/asm/mmu.h | 2 ++ arch/x86/include/asm