Commit 625b7b7f authored by Andy Lutomirski's avatar Andy Lutomirski Committed by Thomas Gleixner
Browse files

x86/vsyscall: Change the default vsyscall mode to xonly 



The use case for full emulation over xonly is very esoteric, e.g. magic
instrumentation tools.

Change the default to the safer xonly mode.

Signed-off-by: default avatarAndy Lutomirski <luto@kernel.org>
Signed-off-by: default avatarThomas Gleixner <tglx@linutronix.de>
Reviewed-by: default avatarKees Cook <keescook@chromium.org>
Cc: Florian Weimer <fweimer@redhat.com>
Cc: Jann Horn <jannh@google.com>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Kernel Hardening <kernel-hardening@lists.openwall.com>
Cc: Peter Zijlstra <peterz@infradead.org>
Link: https://lkml.kernel.org/r/30539f8072d2376b9c9efcc07e6ed0d6bf20e882.1561610354.git.luto@kernel.org
parent b0386979

arch/x86/Kconfig

+1 −1
Original line number Diff line number Diff line
@@ -2285,7 +2285,7 @@ config COMPAT_VDSO 
choice

	prompt "vsyscall table for legacy applications"

	depends on X86_64

	default LEGACY_VSYSCALL_EMULATE

	default LEGACY_VSYSCALL_XONLY

	help

	  Legacy user code that does not know how to find the vDSO expects

	  to be able to issue three syscalls by calling fixed addresses in

CRA Git | Maintained and supported by SUSTech CRA and CCSE