| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 17 Jun 2016 11:44:50 -0700 From: Yinghai Lu <yinghai@...nel.org> To: Kees Cook <keescook@...omium.org> Cc: Baoquan He <bhe@...hat.com>, Ingo Molnar <mingo@...nel.org>, Borislav Petkov <bp@...e.de>, "H. Peter Anvin" <hpa@...or.com>, Thomas Gleixner <tglx@...utronix.de>, Ingo Molnar <mingo@...hat.com>, "x86@...nel.org" <x86@...nel.org>, Andrew Morton <akpm@...ux-foundation.org>, Josh Poimboeuf <jpoimboe@...hat.com>, Andrey Ryabinin <aryabinin@...tuozzo.com>, "H.J. Lu" <hjl.tools@...il.com>, Dmitry Vyukov <dvyukov@...gle.com>, LKML <linux-kernel@...r.kernel.org> Subject: Re: [PATCH v9 5/5] x86/KASLR: Allow randomization below load address On Fri, Jun 17, 2016 at 8:44 AM, Kees Cook <keescook@...omium.org> wrote: >> >> There's no explanation in the code or in the changelog of why 512M was picked as >> the lower limit. > > Yinghai, do you have a rationale for this selection? I understood it > to just be a very conservative target to avoid anything in low > physical memory, but perhaps there is a better reason? when kernel is not loaded high at first, then *output should be 16M or so, so no change. when kernel is loaded high to save the low address space, don't want to KASL to pull back to low address again. If choose 4G, on 4G+512M config, when kernel is loaded high, kasl may not work to chose range from 4G. so I choose 512M, just stay away range for KERNEL_IMAGE_SIZE. Thanks Yinghai
Powered by blists - more mailing lists