Age | Commit message (Collapse) | Author |
|
the "soft" floating-point ABI but this does allow the compiler to generate
FPU instructions.
ok deraadt@
|
|
|
|
layout. Simplify how we identify which frames have trapframes while here.
ok kettenis@
|
|
friendly instructions with safe alternatives. This initial commit fixes
3 instruction forms that will lower to include a c3 (return) byte.
Additional problematic instructions can be fixed incrementally using
this framework.
ok deraadt@
|
|
don't barf on binaries created by ld.lld(1). From FreeBSD.
ok millert@, deraadt@, guenther@
|
|
|
|
|
|
|
|
|
|
ok hackroom@
|
|
* RT #131844: [CVE-2018-6913] heap-buffer-overflow in S_pack_rec
Reported by GwanYeong Kim, fixed by Tony Cook.
* RT #132063: [CVE-2018-6798] Heap-buffer-overflow in
Perl__byte_dump_string (utf8.c)
Reported by Nguyen Duc Manh, fixed by Karl Williamson, Yves Orton, and
Tony Cook.
* RT #132227: [CVE-2018-6797] heap-buffer-overflow (WRITE of size 1) in
S_regatom (regcomp.c)
Reported by Brian Carpenter, fixed by Yves Orton, Karl Williamson, and
Tony Cook.
Many thanks to deraadt@ tj@ bluhm@ tb@ robert@
|
|
was used to compile and object
ok kettenis@
|
|
and probably firefox on amd64/i386.
ok patrick@
|
|
|
|
|
|
Noticed by sthen@
|
|
Noticed by sthen@
|
|
|
|
when compiling with LLVM 6.0.0. This is a good enough temporary fix.
"where's the kaboom?" deraadt@
|
|
|
|
|
|
"where is the kaboom?" deraadt@
|
|
development effort on OpenBSD/arm64.
|
|
|
|
ok hackroom@
|
|
pointers. Since binutils 2.17 is compiled with -Werror, this breaks the
build. Change the function to return -1 as suggested by the comment in
said function.
ok kettenis@
|
|
present in lld 5.0.1 removed (--build-id=fast, -z muldefs,
-z retpolineplt). This includes a bunch of mdoc changes suggested
by schwarze@ that were recently committed upstream.
ok jmc@ schwarze@ kettenis@ deraadt@
|
|
actual error if "install" was done parallelly.
ok espie todd andrew1, input andrew1
|
|
state.
ok patrick@
|
|
|
|
suggested by jmc@ ok patrick@
|
|
ok hackroom@
|
|
This allows linking code compiled by clang with the gcc compiler driver
and makes sure we always use the softfloat implementation in libc. The
libc softfloat implementation is preferred over the one in libgcc as it
implements rounding modes and floating point exceptions.
ok patrick@
|
|
the generation of gap.o.
ok patrick@
|
|
|
|
more closer to GNU linkers. This should help with autoconf/libtool
compatibility in ports.
Requested by Brad
"no objection" kettenis@
|
|
instructions to have side effects so the optimizer does not reorder
them across fnstcw/fldcw sequences. Fixes a bug seen in sqlite3 on
i386.
ok kettenis@
|
|
ok hackroom@
|
|
|
|
Requested by Brad
Tested by me on amd64
Tested by bluhm on i386
Tested by kettenis on arm64, armv7 and sparc64
|
|
|
|
|
|
Makes gas work when compiled with clang.
ok patrick@, millert@
|
|
order it chooses. Reasons for choosing one register before another usually incl
ude compiled instruction size (avoidance of REX prefixes, etc.) or usage convent
ions, but somehow haven't included security implications in the compiled bytecod
e. Some bytecode is more useful in polymorphic ROP sequences than others, so it
seems prudent to try to avoid that bytecode when possible.
This patch moves EBX/RBX towards the end of the allocation preference for 32 and
64 bit general purpose registers. Some instructions using RBX/EBX/BX/BL as a de
stination register end up with a ModR/M byte of C3 or CB, which is often useful
in ROP gadgets. Because these gadgets often occur in the middle of functions, th
ey exhibit somewhat higher diversity than some other C3/CB terminated gadgets. T
his change removes about 3% of total gadgets from the kernel, but about 6% of un
ique gadgets.
There are other possible changes in this direction. BX/BL are obvious next targe
ts for avoidance, and MM3/XMM3 may also be useful to try to avoid if possible.
ok deraadt@
|
|
ok hackroom@
|
|
Fixes issues with cross-device moves, noticed with autoconf
|
|
Reporting OpenBSD bugs to GNU makes no sense...
|
|
ok millert@
|
|
While it is not clear (to me) why that ports ends up with corrupted
shared libs, reverting those changes fixes the issue and should allow us
to close p2k17 more smoothly.
Discussed with a bunch, ok ajacoutot@ guenther@
|
|
We don't link libc into shared-libraries by default to avoid binding libraries
to specific libc majors, so those options have always suffered false positives
for us, but with the move of functions from libpthread to libc the problem has
gotten even worse. A version-agnostic binding to libc would solve this better
but it's on back-order behind the pony I requested.
tweak and ok deraadt@
|