Re: [PATCH 4/5] x86/vsyscall: Disable LASS if vsyscall mode is set to EMULATE

Next message: Conor Dooley: "[PATCH v1] dt-bindings: usb: mpfs-musb: permit resets"
Previous message: Frieder Schrempf: "[PATCH RFC 2/7] mtd: spinand: Add support for clock to RX delay setting"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Dave Hansen

Date: Tue Mar 03 2026 - 11:38:29 EST

On 2/19/26 15:35, Sohil Mehta wrote:
> The EMULATE mode of vsyscall maps the vsyscall page with a high kernel
> address directly into user address space. Reading the vsyscall page in
> EMULATE mode would cause LASS to trigger a #GP.
>
> Fixing the LASS violation in EMULATE mode would require complex
> instruction decoding because the resulting #GP does not include any
> useful error information, and the vsyscall address is not readily
> available in the RIP.
>
> The EMULATE mode has been deprecated since 2022 and can only be enabled
> using the command line parameter vsyscall=emulate. See commit
> bf00745e7791 ("x86/vsyscall: Remove CONFIG_LEGACY_VSYSCALL_EMULATE") for
> details. At this point, no one is expected to be using this insecure
> mode. The rare usages that need it obviously do not care about security.
>
> Disable LASS when EMULATE mode is requested to avoid breaking legacy
> user software. Also, update the vsyscall documentation to reflect this.
> LASS will only be supported if vsyscall mode is set to XONLY (default)
> or NONE.

Reviewed-by: Dave Hansen <dave.hansen@xxxxxxxxxxxxxxx>