Skip to content

issues Search Results · repo:CTSRD-CHERI/cheribsd language:C

Filter by

536 results
 (61 ms)

536 results

inCTSRD-CHERI/cheribsd (press backspace or delete to remove)

- Type: Unneeded subobject bounds causes CHERI bounds violation - Trigger Conditions: Unprivileged BLUETOOTH_PROTO_HCI socket or unprivileged AF_NETGRAPH socket - Impact: Local DoS on CheriBSD only. ...
  • RoundofThree
  • Opened 
    23 days ago
  • #2279

- Type: User provided capability passed to functions meant for copying data between kernel memory locations, causing panic (due to PAN?) - Trigger Conditions: For a jail, prison_check_nfsd in the ...
  • RoundofThree
  • Opened 
    23 days ago
  • #2278

- Type: Code written intentionally to access out of bounds causes CHERI bounds violation - Trigger Conditions: IPFW enabled with any rule containing IPv6 masks. An example would be the default open ...
  • RoundofThree
  • 1
  • Opened 
    23 days ago
  • #2277

The kstack allocator includes a single guard page at the bottom of each stack. In principle these are unnecessary in purecap kernels and we should try setting KSTACK_GUARD_PAGES to 0 there.
  • markjdb
  • Opened 
    on Dec 21, 2024
  • #2275

Currently struct pcb is allocated by stealing a chunk of the kernel stack. There are two issues in the current implementation. 1. We are not setting bounds on struct pcb 2. Setting bounds on struct ...
  • qwattash
  • 1
  • Opened 
    on Dec 19, 2024
  • #2273

From @brooksdavis in #2260: I think that longer term we should implement _FORTIFY_SOURCE eliding checks we re confident purecap provides and keeping ones it doesn t (e.g., checking for overlapping memcpy ...
Help Wanted
  • bsdjhb
  • Opened 
    on Dec 10, 2024
  • #2263

Syzkaller found the following crash in a purecap kernel with subobject bounds: x0: 0xffff00013237d0c6 [rwxRW,0xffff00013237d090-0xffff00013237d0c6] x1: 0xffff008000000000 [rwRW,0xffff008000000000-0xffff00a000000000] ...
  • RoundofThree
  • 2
  • Opened 
    on Dec 3, 2024
  • #2256

I was casually editing a kernel source-code file on my Morello box, running with pure cap + heap temporal safety + c18n and encountered this crash: Core was generated by `vi kern_proc.c . Program terminated ...
  • rwatson
  • 4
  • Opened 
    on Nov 27, 2024
  • #2253

In the latest dev branch GENERIC-MORELLO-PURECAP kernel (tested at https://github.com/CTSRD-CHERI/cheribsd/tree/6fb9ad460cd6b24b3a37c09c0aefe1de39600879), I can hit this KASSERT panic in vm_map_remove_locked. ...
bug
  • RoundofThree
  • 1
  • Opened 
    on Nov 21, 2024
  • #2252
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! 
Press the
/
key to activate the search input again and adjust your query.
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! 
Press the
/
key to activate the search input again and adjust your query.
Issue search results · GitHub