| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 1 Apr 2014 17:21:02 -0400 From: Johannes Weiner <hannes@...xchg.org> To: John Stultz <john.stultz@...aro.org> Cc: LKML <linux-kernel@...r.kernel.org>, Andrew Morton <akpm@...ux-foundation.org>, Android Kernel Team <kernel-team@...roid.com>, Robert Love <rlove@...gle.com>, Mel Gorman <mel@....ul.ie>, Hugh Dickins <hughd@...gle.com>, Dave Hansen <dave@...1.net>, Rik van Riel <riel@...hat.com>, Dmitry Adamushko <dmitry.adamushko@...il.com>, Neil Brown <neilb@...e.de>, Andrea Arcangeli <aarcange@...hat.com>, Mike Hommey <mh@...ndium.org>, Taras Glek <tglek@...illa.com>, Jan Kara <jack@...e.cz>, KOSAKI Motohiro <kosaki.motohiro@...il.com>, Michel Lespinasse <walken@...gle.com>, Minchan Kim <minchan@...nel.org>, "H. Peter Anvin" <hpa@...or.com>, "linux-mm@...ck.org" <linux-mm@...ck.org> Subject: Re: [PATCH 0/5] Volatile Ranges (v12) & LSF-MM discussion fodder [ I tried to bring this up during LSFMM but it got drowned out. Trying again :) ] On Fri, Mar 21, 2014 at 02:17:30PM -0700, John Stultz wrote: > Optimistic method: > 1) Userland marks a large range of data as volatile > 2) Userland continues to access the data as it needs. > 3) If userland accesses a page that has been purged, the kernel will > send a SIGBUS > 4) Userspace can trap the SIGBUS, mark the affected pages as > non-volatile, and refill the data as needed before continuing on As far as I understand, if a pointer to volatile memory makes it into a syscall and the fault is trapped in kernel space, there won't be a SIGBUS, the syscall will just return -EFAULT. Handling this would mean annotating every syscall invocation to check for -EFAULT, refill the data, and then restart the syscall. This is complicated even before taking external libraries into account, which may not propagate syscall returns properly or may not be reentrant at the necessary granularity. Another option is to never pass volatile memory pointers into the kernel, but that too means that knowledge of volatility has to travel alongside the pointers, which will either result in more complexity throughout the application or severely limited scope of volatile memory usage. Either way, optimistic volatile pointers are nowhere near as transparent to the application as the above description suggests, which makes this usecase not very interesting, IMO. If we can support it at little cost, why not, but I don't think we should complicate the common usecases to support this one. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists