kern/amd64: cpu: Add kernel fence for trap entry

A kernel fence ensures that the GS base will contain kernel data on entry. Signed-off-by: Ian Moffett <ian@osmora.org>
author: Ian Moffett <ian@osmora.org> 2025-11-15 18:52:55 -0500
committer: Ian Moffett <ian@osmora.org> 2025-11-15 18:52:55 -0500
commit: 53e2489b201d84ed5d9fc8bcdd65551bb6b43b9a (patch)
tree: 53c5a7520fd1052954252aa6ad6810108ced410c /sys/arch/amd64/cpu
parent: e1773e18239e642ae97e5dd48bbad6d3c5ffccba (diff)
1 files changed, 30 insertions, 0 deletions
diff --git a/sys/arch/amd64/cpu/idt.S b/sys/arch/amd64/cpu/idt.S
index a5a4a73..b7169d8 100644
--- a/sys/arch/amd64/cpu/idt.S
+++ b/sys/arch/amd64/cpu/idt.S
@@ -27,6 +27,8 @@
  * POSSIBILITY OF SUCH DAMAGE.
  */
 
+#include <md/kfence.h>
+
 #define KERNEL_CS 0x08
 
 #define INT_GATE 0x8E
@@ -152,127 +154,155 @@ set_traps:
     retq
 
 diverr:
+    KFENCE
     push_frame 0x0
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x0
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 debug_except:
+    KFENCE
     push_frame 0x1
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x1
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 nmi:
+    KFENCE
     push_frame 0x2
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x2
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 breakpoint:
+    KFENCE
     push_frame 0x3
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x3
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 overflow:
+    KFENCE
     push_frame 0x4
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x4
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 bound_range:
+    KFENCE
     push_frame 0x5
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x5
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 invl_opc:
+    KFENCE
     push_frame 0x6
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x6
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 no_coproc:
+    KFENCE
     push_frame 0x7
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x7
+    KFENCE
 1:  cli
     hlt
     jmp 1b
 
 double_fault:
+    KFENCE_EC
     push_frame 0x8
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0x8
+    KFENCE_EC
 1:  cli
     hlt
     jmp 1b
 
 invalid_tss:
+    KFENCE_EC
     push_frame 0xA
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0xA
+    KFENCE_EC
 1:  cli
     hlt
     jmp 1b
 
 seg_np:
+    KFENCE_EC
     push_frame 0xB
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0xB
+    KFENCE_EC
 1:  cli
     hlt
     jmp 1b
 
 ss_fault:
+    KFENCE_EC
     push_frame 0xC
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0xC
+    KFENCE_EC
 1:  cli
     hlt
     jmp 1b
 
 gpf:
+    KFENCE_EC
     push_frame 0xD
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0xD
+    KFENCE_EC
 1:  cli
     hlt
     jmp 1b
 
 page_fault:
+    KFENCE_EC
     push_frame 0xE
     mov %rsp, %rdi
     call trap_dispatch
     pop_frame  0xE
+    KFENCE_EC
 1:  cli
     hlt
     jmp 1b
author	Ian Moffett <ian@osmora.org>	2025-11-15 18:52:55 -0500
committer	Ian Moffett <ian@osmora.org>	2025-11-15 18:52:55 -0500
commit	53e2489b201d84ed5d9fc8bcdd65551bb6b43b9a (patch)
tree	53c5a7520fd1052954252aa6ad6810108ced410c /sys/arch/amd64/cpu
parent	e1773e18239e642ae97e5dd48bbad6d3c5ffccba (diff)