| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 06 Oct 2014 21:50:47 -0700 From: David Daney <david.s.daney@...il.com> To: Rich Felker <dalias@...c.org>, David Daney <ddaney@...iumnetworks.com> CC: Andy Lutomirski <luto@...capital.net>, David Daney <ddaney.cavm@...il.com>, libc-alpha@...rceware.org, linux-kernel@...r.kernel.org, linux-mips@...ux-mips.org, David Daney <david.daney@...ium.com> Subject: Re: [PATCH resend] MIPS: Allow FPU emulator to use non-stack area. On 10/06/2014 05:49 PM, Rich Felker wrote: > On Mon, Oct 06, 2014 at 05:33:18PM -0700, David Daney wrote: [...] >> Why not? It will emit any instructions we care to make it emit. If >> we want it to emit crypto instructions with patented algorithms, >> then it will do that. But we would still like to use a generic >> kernel with generic FPU support. >> >> The most straight forward way (and the currently implemented way) of >> doing this is to execute the instructions in question out-of-line >> (on the userspace stack). >> >> The question here is: What is the best way to get to a >> non-executable stack. >> >> The consensus among MIPS developers is that we should continue using > My experience has been that hardware and software developers focused > on a particular hardware target are generally unqualified to make > decisions that affect the design and operation of libc or the kernel. > They are not experts in these areas. It was apparent early on in this > thread, when you mentioned the idea that "not all threads would need > fpu support", that you were thinking from a standpoint of custom > low-level software and not a general purpose libc that cannot read the > application author's mind. Not at all, I was thinking of soft-float ABIs, as they never execute FP instructions, and are often used on systems with no FPU. In fact many non-FPU systems never execute any hard-float code. So those system should not suffer large performance regressions from any change made to support a non-executable stack. We use GLibC on many soft-float only systems, and I would posit that GLibC is a general purpose libc. > It seems nobody had thought of the > impossibility of doing lazy setup (inability to handle failure) and > the necessity of always initializing this stuff at pthread_create > time, either. Design issues like this should be run by experts in the > libc area early on, not as an afterthought. I bow down to the experts, as obviously I know nothing about: 1) The Linux kernel 2) The MIPS architecture. 3) Library design. 4) C libraries and their interaction with the kernel, linker and compiler. > >> the out-of-line execution trick, but do it somewhere other than in >> stack memory. > How do you answer Andy Lutomirski's question about what happens when a > signal handler interrupts execution while the program counter is > pointing at this "out-of-line execution" trampoline? This seems like a > show-stopper for using anything other than the stack. It would be nice to support, but not doing so would not be a regression from current behavior. > >> One way of doing this is to have the kernel magically generate >> thread local memory regions. >> >> Another option is to have userspace manage the out-of-line execution areas. >> >> As is often the case, each approach has different pluses and minuses. > Having the kernel magically do it would be better, but I'm doubtful > that solution works anyway due to the above signal handler/nesting > issue. So the perfect is the enemy of the good? No non-executable stack for you, MIPS. > Rich > -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists