CVSROOT: /cvs
Module name: src
Changes by: dera...@cvs.openbsd.org 2016/05/10 12:39:53
Modified files:
sys/arch/alpha/alpha: locore.s machdep.c
sys/arch/alpha/include: signal.h
sys/arch/amd64/amd64: locore.S machdep.c
sys/arch/amd64/include: signal.h
sys/arch/arm/arm: sig_machdep.c sigcode.S
sys/arch/arm/include: signal.h
sys/arch/hppa/hppa: locore.S machdep.c
sys/arch/hppa/include: signal.h
sys/arch/hppa64/hppa64: locore.S machdep.c
sys/arch/hppa64/include: signal.h
sys/arch/i386/i386: locore.s machdep.c
sys/arch/i386/include: signal.h
sys/arch/m88k/m88k: sig_machdep.c subr.S
sys/arch/macppc/macppc: locore.S machdep.c
sys/arch/mips64/include: signal.h
sys/arch/mips64/mips64: lcore_access.S sendsig.c
sys/arch/powerpc/include: signal.h
sys/arch/sh/include: signal.h
sys/arch/sh/sh : locore_subr.S sh_machdep.c
sys/arch/socppc/socppc: locore.S machdep.c
sys/arch/sparc/include: signal.h
sys/arch/sparc/sparc: machdep.c
sys/arch/sparc64/include: signal.h
sys/arch/sparc64/sparc64: locore.s machdep.c
sys/kern : exec_elf.c init_main.c kern_exec.c
sys/sys : proc.h
Log message:
SROP mitigation. sendsig() stores a (per-process ^ &sigcontext) cookie
inside the sigcontext. sigreturn(2) checks syscall entry was from the
exact PC addr in the (per-process ASLR) sigtramp, verifies the cookie,
and clears it to prevent sigcontext reuse.
not yet tested on landisk, sparc, *88k, socppc.
ok kettenis
