| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20170324092433.GA3237@gmail.com>
Date: Fri, 24 Mar 2017 10:24:34 +0100
From: Ingo Molnar <mingo@...nel.org>
To: Dave Young <dyoung@...hat.com>
Cc: Baoquan He <bhe@...hat.com>, linux-kernel@...r.kernel.org,
stable@...r.kernel.org, Thomas Gleixner <tglx@...utronix.de>,
Ingo Molnar <mingo@...hat.com>,
"H. Peter Anvin" <hpa@...or.com>, x86@...nel.org,
linux-efi@...r.kernel.org, Thomas Garnier <thgarnie@...gle.com>,
Kees Cook <keescook@...omium.org>,
Borislav Petkov <bp@...en8.de>,
Andrew Morton <akpm@...ux-foundation.org>,
Masahiro Yamada <yamada.masahiro@...ionext.com>,
Bhupesh Sharma <bhsharma@...hat.com>
Subject: Re: [PATCH v2] x86/mm/KASLR: EFI region is mistakenly included into
KASLR VA space for randomization
* Dave Young <dyoung@...hat.com> wrote:
> > > So I applied this kexec fix and extended the changelog to clearly show why
> > > this fix matters in practice.
> >
> > I thought it only impacts kexec, but Dave thought it will impact 1st kenrel
> > either.
>
> Yes, I think no need to mention kexec, it is a general issue.
>
> First, the space is reserved for EFI, so kernel should not use it for kaslr.
It's the kernel's EFI code, and we map whatever address we want (and then pass
that to the EFI runtime), so wether it's randomized or not is the Linux kernel's
policy decision...
So that's my question: can these memory regions include security sensitive data,
and if yes, how can we best randomize it while kexec and other kernel and EFI
features still work?
Preserving virtual addresses for kexec is a red herring: the randomized offset
could be passed to the kexec-ed kernel just fine.
Thanks,
Ingo
Powered by blists - more mailing lists