issues Search Results · repo:CTSRD-CHERI/cheribsd language:C
Filter by
536 results
(61 ms)536 results
inCTSRD-CHERI/cheribsd (press backspace or delete to remove) - Type: Unneeded subobject bounds causes CHERI bounds violation
- Trigger Conditions: Unprivileged BLUETOOTH_PROTO_HCI socket or unprivileged AF_NETGRAPH socket
- Impact: Local DoS on CheriBSD only. ...
- RoundofThree
- Opened 23 days ago
- #2279
- Type: User provided capability passed to functions meant for copying data between kernel memory locations, causing
panic (due to PAN?)
- Trigger Conditions: For a jail, prison_check_nfsd in the ...
- RoundofThree
- Opened 23 days ago
- #2278
- Type: Code written intentionally to access out of bounds causes CHERI bounds violation
- Trigger Conditions: IPFW enabled with any rule containing IPv6 masks. An example would be the default open ...
- RoundofThree
- 1
- Opened 23 days ago
- #2277
The kstack allocator includes a single guard page at the bottom of each stack. In principle these are unnecessary in
purecap kernels and we should try setting KSTACK_GUARD_PAGES to 0 there.
- markjdb
- Opened on Dec 21, 2024
- #2275
Currently struct pcb is allocated by stealing a chunk of the kernel stack. There are two issues in the current
implementation.
1. We are not setting bounds on struct pcb
2. Setting bounds on struct ...
- qwattash
- 1
- Opened on Dec 19, 2024
- #2273
From @brooksdavis in #2260:
I think that longer term we should implement _FORTIFY_SOURCE eliding checks we re confident purecap provides and keeping
ones it doesn t (e.g., checking for overlapping memcpy ...
Help Wanted
- bsdjhb
- Opened on Dec 10, 2024
- #2263
Syzkaller found the following crash in a purecap kernel with subobject bounds:
x0: 0xffff00013237d0c6 [rwxRW,0xffff00013237d090-0xffff00013237d0c6]
x1: 0xffff008000000000 [rwRW,0xffff008000000000-0xffff00a000000000] ...
- RoundofThree
- 2
- Opened on Dec 3, 2024
- #2256
I was casually editing a kernel source-code file on my Morello box, running with pure cap + heap temporal safety + c18n
and encountered this crash:
Core was generated by `vi kern_proc.c .
Program terminated ...
- rwatson
- 4
- Opened on Nov 27, 2024
- #2253
In the latest dev branch GENERIC-MORELLO-PURECAP kernel (tested at
https://github.com/CTSRD-CHERI/cheribsd/tree/6fb9ad460cd6b24b3a37c09c0aefe1de39600879), I can hit this KASSERT panic in
vm_map_remove_locked. ...
bug
- RoundofThree
- 1
- Opened on Nov 21, 2024
- #2252
- gvnn3
- Opened on Oct 16, 2024
- #2235
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.