| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20150724081326.GO25159@twins.programming.kicks-ass.net> Date: Fri, 24 Jul 2015 10:13:26 +0200 From: Peter Zijlstra <peterz@...radead.org> To: Linus Torvalds <torvalds@...ux-foundation.org> Cc: Andy Lutomirski <luto@...capital.net>, Steven Rostedt <rostedt@...dmis.org>, X86 ML <x86@...nel.org>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, Willy Tarreau <w@....eu>, Borislav Petkov <bp@...en8.de>, Thomas Gleixner <tglx@...utronix.de>, Brian Gerst <brgerst@...il.com> Subject: Re: Dealing with the NMI mess On Thu, Jul 23, 2015 at 02:59:56PM -0700, Linus Torvalds wrote: > Hmmm. I thought watchpoints were "before the instruction" too, but > that's just because I haven't used them in ages, and I didn't remember > the details. I just looked it up. > > You're right - the memory watchpoints trigger after the instruction > has executed, so RF isn't an issue. So yes, the only issue is > instruction breakpoints, and those are the only ones we need to clear. > > And that makes it really easy. > > So yes, I agree. We only need to clear all kernel breakpoints. But but but, we can access userspace with !IF, imagine someone doing: local_irq_disable(); copy_from_user_inatomic(); and as luck would have it, there's a breakpoint on the user memory we just touched. And we go and disable a user breakpoint. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists