| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 24 Nov 2012 17:50:10 -0600 From: ebiederm@...ssion.com (Eric W. Biederman) To: "H. Peter Anvin" <hpa@...or.com> Cc: Yinghai Lu <yinghai@...nel.org>, Thomas Gleixner <tglx@...utronix.de>, Ingo Molnar <mingo@...e.hu>, linux-kernel@...r.kernel.org, Rob Landley <rob@...dley.net>, Matt Fleming <matt.fleming@...el.com> Subject: Re: [PATCH v3 11/12] x86, boot: add fields to support load bzImage and ramdisk high "H. Peter Anvin" <hpa@...or.com> writes: > On 11/24/2012 09:32 AM, H. Peter Anvin wrote: >> On 11/24/2012 04:37 AM, Eric W. Biederman wrote: >>> >>> Certainly /sbin/kexec isn't bothering to calculate the end of the setup >>> header and just being far more conservative and using all of the 16bit >>> real mode code as it's initializer. >>> >> >> That's not conservative... that's just plain wrong. It means you're >> initializing the fields in struct boot_params with garbage instead of a >> predictable value (zero). It was conservative at the time the code was introduced and it most definitely is not wrong. The code predates the verbage in boot.txt. Apparently no one bothered to see what /sbin/kexec was actually doing when they documented the 32bit boot loader interface. I was under the impression that it was actual practice that was documented but in this particular something else was documented instead. Since /sbin/kexec did not need any of the more recent features we simply have not noticed it until now. >> We could work around it with a sentinel hack... except you *also* >> probably modify *some* fields and now we have a horrid mix of >> initialized and uninitialized fields to sort out... and there really >> isn't any sane way for the kernel to sort that out. >> >> We have a huge problem on our hands now because of it. >> > > So, given the mess we now have on our hands... any suggestions how to best solve > it? There is the option of simply declaring old kexec binaries broken; they > will then not work reliably with newer kernels, if they even work reliably now > -- it is hard to know for certain. I believe all added variables between the last version of the boot protocol /sbin/kexec knows about and the current time were added in the initialized data section. Certainly we can check and that will tell us how likely changes in arch/x86/boot/ have been regressions in the 32bit entry point support. As for solving this there is a simple solution. Add a second jump right after the first jump. The variables after the second jump can all be zero initialized. And if we really care about breaking other boot loaders we can take a survey and actually look and see what they do. There really aren't that many x86 boot loaders. Eric -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists