| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 30 Nov 2015 22:24:37 +0000 From: Russell King - ARM Linux <linux@....linux.org.uk> To: Kees Cook <keescook@...omium.org> Cc: Ingo Molnar <mingo@...nel.org>, Heiko Carstens <heiko.carstens@...ibm.com>, Michael Ellerman <mpe@...erman.id.au>, "James E.J. Bottomley" <jejb@...isc-linux.org>, Catalin Marinas <catalin.marinas@....com>, LKML <linux-kernel@...r.kernel.org>, Andy Lutomirski <luto@...capital.net>, "H. Peter Anvin" <hpa@...or.com>, Mathias Krause <minipli@...glemail.com>, Ingo Molnar <mingo@...hat.com>, Thomas Gleixner <tglx@...utronix.de>, "x86@...nel.org" <x86@...nel.org>, Arnd Bergmann <arnd@...db.de>, PaX Team <pageexec@...email.hu>, Emese Revfy <re.emese@...il.com>, "kernel-hardening@...ts.openwall.com" <kernel-hardening@...ts.openwall.com>, linux-arch <linux-arch@...r.kernel.org> Subject: Re: [PATCH v2 1/4] init: create cmdline param to disable readonly On Mon, Nov 30, 2015 at 01:52:10PM -0800, Kees Cook wrote: > On Wed, Nov 25, 2015 at 11:51 PM, Ingo Molnar <mingo@...nel.org> wrote: > > * Kees Cook <keescook@...omium.org> wrote: > >> +#ifdef CONFIG_DEBUG_RODATA > > > > Btw., could you please remove the Kconfig option altogether in an additional patch > > and make read-only sections an always-on feature? It has been default-y for years > > and all distros have it enabled. > > Yeah, this is something I've wanted to do for a while, but I would > point out that only a few architectures have actually implemented it, > and for arm and arm64 it was very recent: I don't think it can entirely be a kernel command line option. On ARM, enabling DEBUG_RODATA has a substantial effect on the size of the kernel image - we have to pad various sections to 1MB boundaries so we can set the appropriate permissions. Forcing this layout on everyone won't work. What we can do is the half-way house: we can have the kernel command line option which enables and disables the protections, but the layout of the kernel image would still need to be controlled by DEBUG_RODATA. I'm left wondering what the advantage of that would be: it'd end up offering a suboptimal layout, additional memory usage but without the benefits of memory protections. The alternative is keeping the kernel in unlinked object form, and laying out and linking the kernel at boot time, probably in PIC assembly code. That's possible but I think is undesirable. So all in all, I'm in favour of keeping things as they are on ARM. -- FTTC broadband for 0.8mile line: currently at 9.6Mbps down 400kbps up according to speedtest.net. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists