| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <200608221544.26989.ak@muc.de> Date: Tue, 22 Aug 2006 15:44:26 +0200 From: Andi Kleen <ak@....de> To: virtualization@...ts.osdl.org Cc: Alan Cox <alan@...rguk.ukuu.org.uk>, Jeremy Fitzhardinge <jeremy@...p.org>, Andrew Morton <akpm@...l.org>, Chris Wright <chrisw@...s-sol.org>, Linux Kernel Mailing List <linux-kernel@...r.kernel.org> Subject: Re: [PATCH] paravirt.h I don't see why paravirt ops is that much more sensitive than most other kernel code. > It would be a lot safer if we could have the struct paravirt_ops in > protected read-only const memory space, set it up in the core kernel > early on in boot when we play "guess todays hypervisor" and then make > sure it stays in read only (even to kernel) space. By default we don't make anything read only because that would mess up the 2MB kernel mapping. In general i don't think making select code in the kernel read only is a good idea, because as long as you don't protect everything including stacks etc. there will be always attack points where supposedly protected code relies on unprotected state. If someone can write to kernel memory you already lost. And it adds TLB pressure. -Andi - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists