Ping? Any comments regarding the patch? Mathias
On 25.06.24 12:12, Mathias Krause wrote: > On 20.06.24 18:34, Mathias Krause wrote: >> attached patch makes the read-only GDT handling CET compatible >> >> Quoting the patch description: >> """ >> CET enabled systems need to disable CR4.CET prior to attempting to >> toggle CR0.WP to avoid triggering a #GP(0). This is needed in VMMR0.r0 >> for PaX's r/o GDT handling. >> >> Enhance the r/o GDT handling to toggle CR4.CET as well in case it's enabled. > > Testing unveiled that interrupts need to be disabled around toggling > CR4.CET to not trip up sanity checks related to Linux's per-cpu CR4 shadow. > > Attached is an updated version that takes this into account and tries to > merge interrupt flag restore with the restore_fs path. > > Thanks, > Mathias > >> >> This patch is provided under the MIT license. >> """ >> >> It would be nice to get it integrated not only in trunk, but all still >> maintained release branches as well. >> >> Thanks, >> Mathias _______________________________________________ vbox-dev mailing list vbox-dev@virtualbox.org https://www.virtualbox.org/mailman/listinfo/vbox-dev