| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <87y1er6hl4.fsf@mail.lhotse>
Date: Tue, 21 Nov 2023 12:05:59 +1100
From: Michael Ellerman <mpe@...erman.id.au>
To: Ignat Korchagin <ignat@...udflare.com>, eric.devolder@...cle.com
Cc: linux@...linux.org.uk, catalin.marinas@....com, will@...nel.org,
chenhuacai@...nel.org, geert@...ux-m68k.org,
tsbogend@...ha.franken.de,
James Bottomley <James.Bottomley@...senpartnership.com>,
deller@....de, ysato@...rs.sourceforge.jp, dalias@...c.org,
glaubitz@...sik.fu-berlin.de, Thomas Gleixner <tglx@...utronix.de>,
Ingo Molnar <mingo@...hat.com>, Borislav Petkov <bp@...en8.de>,
dave.hansen@...ux.intel.com, x86@...nel.org,
linux-kernel <linux-kernel@...r.kernel.org>,
linux-arm-kernel@...ts.infradead.org, linux-ia64@...r.kernel.org,
loongarch@...ts.linux.dev, linux-m68k@...ts.linux-m68k.org,
linux-mips@...r.kernel.org, linux-parisc@...r.kernel.org,
linuxppc-dev@...ts.ozlabs.org, linux-riscv@...ts.infradead.org,
linux-s390@...r.kernel.org, linux-sh@...r.kernel.org,
kernel@...0n.name, npiggin@...il.com, christophe.leroy@...roup.eu,
paul.walmsley@...ive.com, palmer@...belt.com,
aou@...s.berkeley.edu, hca@...ux.ibm.com, gor@...ux.ibm.com,
agordeev@...ux.ibm.com, borntraeger@...ux.ibm.com,
svens@...ux.ibm.com, hpa@...or.com, keescook@...omium.org,
paulmck@...nel.org, Peter Zijlstra <peterz@...radead.org>,
frederic@...nel.org, Andrew Morton <akpm@...ux-foundation.org>,
Ard Biesheuvel <ardb@...nel.org>, samitolvanen@...gle.com,
juerg.haefliger@...onical.com, arnd@...db.de,
rmk+kernel@...linux.org.uk, linus.walleij@...aro.org,
sebastian.reichel@...labora.com, rppt@...nel.org,
kirill.shutemov@...ux.intel.com, anshuman.khandual@....com,
ziy@...dia.com, masahiroy@...nel.org, ndesaulniers@...gle.com,
mhiramat@...nel.org, ojeda@...nel.org, thunder.leizhen@...wei.com,
xin3.li@...el.com, tj@...nel.org,
Greg KH <gregkh@...uxfoundation.org>, tsi@...oix.net,
bhe@...hat.com, hbathini@...ux.ibm.com, sourabhjain@...ux.ibm.com,
boris.ostrovsky@...cle.com, konrad.wilk@...cle.com,
kernel-team <kernel-team@...udflare.com>
Subject: Re: Potential config regression after 89cde455 ("kexec: consolidate
kexec and crash options into kernel/Kconfig.kexec")
Ignat Korchagin <ignat@...udflare.com> writes:
> Good day!
>
> We have recently started to evaluate Linux 6.6 and noticed that we
> cannot disable CONFIG_KEXEC anymore, but keep CONFIG_CRASH_DUMP
> enabled. It seems to be related to commit 89cde455 ("kexec:
> consolidate kexec and crash options into kernel/Kconfig.kexec"), where
> a CONFIG_KEXEC dependency was added to CONFIG_CRASH_DUMP.
>
> In our current kernel (Linux 6.1) we only enable CONFIG_KEXEC_FILE
> with enforced signature check to support the kernel crash dumping
> functionality and would like to keep CONFIG_KEXEC disabled for
> security reasons [1].
>
> I was reading the long commit message, but the reason for adding
> CONFIG_KEXEC as a dependency for CONFIG_CRASH_DUMP evaded me. And I
> believe from the implementation perspective CONFIG_KEXEC_FILE should
> suffice here (as we successfully used it for crashdumps on Linux 6.1).
>
> Is there a reason for adding this dependency or is it just an
> oversight? Would some solution of requiring either CONFIG_KEXEC or
> CONFIG_KEXEC_FILE work here?
I don't actually see any reason for CRASH_DUMP to depend on KEXEC or
KEXEC_FILE.
None of the old CRASH_DUMP symbols depended on KEXEC AFAICS. Using
something like:
$ git diff 89cde455..95d1fef5 | grep -A 3 "^-.*config CRASH_DUMP"
It's reasonable to want to build a kernel that supports CRASH_DUMP (ie.
can be a dump kernel), but doesn't support kexec and requires a regular
reboot. Though I doubt anyone does that in practice?
cheers
Powered by blists - more mailing lists