| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 12 Sep 2014 13:33:02 -0700 From: Dave Hansen <dave.hansen@...el.com> To: Thomas Gleixner <tglx@...utronix.de> CC: Qiaowei Ren <qiaowei.ren@...el.com>, "H. Peter Anvin" <hpa@...or.com>, Ingo Molnar <mingo@...hat.com>, x86@...nel.org, linux-mm@...ck.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH v8 08/10] x86, mpx: add prctl commands PR_MPX_REGISTER, PR_MPX_UNREGISTER On 09/12/2014 10:42 AM, Thomas Gleixner wrote: > On Fri, 12 Sep 2014, Dave Hansen wrote: >> The prctl(register) is meant to be a signal from userspace to the kernel >> to say, "I would like your help in managing these bounds tables". >> prctl(unregister) is the opposite, meaning "I don't want your help any >> more". > > Fine, but that's a totally different story. I can see the usefulness > of this, but then it's a complete misnomer. It should be: > > prctl(EN/DISABLE_MPX_BT_MANAGEMENT) Agreed. Those are much better names. > So this wants to be a boolean value and not some random user space > address collected at some random point and then ignored until you do > the magic cleanup. See the other reply. I know at this point you think the kernel can not or should not keep a copy of the bounds directory location around. I understand that. Bear with me for a moment, and please just assume for a moment that we need it. It's far from a random userspace address. When you make a syscall, we put the arguments in registers. The register we're putting it in here just happens to be used by the hardware. Right now, we do (ignoring the actual xsave/xrstr): bndcfgu = bnd_dir_ptr | ENABLE_BIT; prctl(ENABLE_MPX_BT_MANAGEMENT); // kernel grabs from xsave buf We could pass it explicitly in %rdi as a syscall argument and not have the prctl() code fetch it from the xsave buffer. I'm just not sure what this buys us: bndcfgu = bnd_dir_ptr | ENABLE_BIT; prctl(ENABLE_MPX_BT_MANAGEMENT, bndcfgu); Also, the "random cleanup" just happens to correspond with memory deallocation, which is something we want to go fast. I'd _prefer_ to keep xsaves out of the unmap path if possible. It's not a strict requirement, but it does seem prudent as an xsave eats a dozen or so cachelines. It's also not "sampled". I can't imagine a situation where the register will change values during the execution of any sane program. It really is essentially fixed. It's probably one of the reasons it is so expensive to access: there's *no* reason to do it frequently. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists