Re: [Security] proactive defense: using read-only memory, RO/NX modules

view
thread

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Ingo Molnar

Subject: Re: [Security] proactive defense: using read-only memory, RO/NX modules

Date: Thursday, November 11, 2010 - 2:07 am

* Kees Cook <kees.cook@canonical.com> wrote:

quoted text> Hi Ingo,
> 
> On Wed, Nov 10, 2010 at 10:04:15AM +0100, Ingo Molnar wrote:
> > * Kees Cook <kees.cook@canonical.com> wrote:
> > > Oh, well, yes, that's a good reason. :) Where was this covered? I'd like to help 
> > > get it reproduced and ironed out.
> > 
> > Matthieu Castet seems to have dusted off those patches and submitted two of them in 
> > this mail:
> > 
> >   Subject: [RFC] reworked NX protection for kernel data
> > 
> > Matthieu, are you still interested in this topic?
> > 
> > The original, broken patches were these -tip commits:
> > 
> >  1e858c081af5: x86, mm: RO/NX protection for loadable kernel modules
> >  18c60ddc9eff: x86, mm: NX protection for kernel data
> >  c226a2feba21: x86, mm: Set first MB as RW+NX
> >  b29d530510d4: x86, mm: Correcting improper large page preservation
> > 
> > I reported one of the crashes in:
> > 
> >   Subject: Re: [tip:x86/mm] x86, mm: Set first MB as RW+NX
> > 
> > on lkml.
> 
> Thanks for looking this up!
> 
> Can we get 1e858c081af5 and 18c60ddc9eff back in, and then work forward
> from there?

Yeah. Please port them to latest -tip:

   http://people.redhat.com/mingo/tip.git/README

And give them some testing, and send out the new series. I'll re-report the crash to 
you for a new kernel, if it still occurs.

(Please also keep Rusty and Linus Cc:-ed for the module bits.)

In hindsight, i think the kernel/module.c bits should be in arch/x86/kernel/module.c 
- the new code is full of x86 only names and facilities.

Also, please remove various checkpatch col80 artifacts, such as:

+               if (end_pfn > begin_pfn)
+                       set_memory_nx(begin_pfn << PAGE_SHIFT,
+                                               end_pfn - begin_pfn);

that should be:

+               if (end_pfn > begin_pfn)
+                       set_memory_nx(begin_pfn << PAGE_SHIFT, end_pfn - begin_pfn);

Thanks,

	Ingo
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[Security] proactive defense: using read-only memory, Kees Cook, (Sun Nov 7, 12:35 pm)

Re: [Security] proactive defense: using read-only memory, ..., Ingo Molnar, (Sun Nov 7, 11:13 pm)

Re: [Security] proactive defense: using read-only memory, ..., Alan Cox, (Mon Nov 8, 3:03 am)

Re: [Security] proactive defense: using read-only memory, ..., Kees Cook, (Mon Nov 8, 2:42 pm)

Re: [Security] proactive defense: using read-only memory, ..., Ingo Molnar, (Wed Nov 10, 2:04 am)

Re: [Security] proactive defense: using read-only memory, ..., Kees Cook, (Wed Nov 10, 11:56 pm)

Re: [Security] proactive defense: using read-only memory, ..., Ingo Molnar, (Thu Nov 11, 2:07 am)

Re: [Security] proactive defense: using read-only memory, ..., matthieu castet, (Sat Nov 13, 12:59 pm)

Re: [Security] proactive defense: using read-only memory, ..., Ingo Molnar, (Sun Nov 14, 2:56 am)

Re: [Security] proactive defense: using read-only memory, Pavel Machek, (Wed Nov 17, 3:00 am)

Re: [Security] proactive defense: using read-only memory, Kees Cook, (Wed Nov 17, 3:14 pm)

Re: [Security] proactive defense: using read-only memory, Valdis.Kletnieks, (Wed Nov 17, 5:12 pm)

Re: [Security] proactive defense: using read-only memory, Pavel Machek, (Sun Jan 2, 2:09 am)

Navigation

Popular discussions


linux-kernel:
Mel Gorman	Re: [PATCH 1/4] vmstat: remove zone->lock from walk_zones_in_node
Guenter Roeck	Re: [lm-sensors] Location for thermal drivers
David Woodhouse	Re: RFC: Moving firmware blobs out of the kernel.
Siddha, Suresh B	Re: [PATCH 2.6.21 review I] [11/25] x86: default to physical mode on hotplug CPU k...
Peter Zijlstra	Re: [patch 4/6] mm: merge populate and nopage into fault (fixes nonlinear)
git-commits-head:
Linux Kernel Mailing List	[MIPS] Fix potential latency problem due to non-atomic cpu_wait.
Linux Kernel Mailing List	USB: rename USB_SPEED_VARIABLE to USB_SPEED_WIRELESS
Linux Kernel Mailing List	lib/vsprintf.c: fix bug omitting minus sign of numbers (module_param)
Linux Kernel Mailing List	[Bluetooth] Initiate authentication during connection establishment
Linux Kernel Mailing List	[POWERPC] 4xx: Add ppc40x_defconfig
linux-netdev:
MERCEDES	Your mail id has won 950,000.00 in the MERCEDES Benz Online Promo.for claims send:
David Miller	Re: [PATCH] xen/netfront: do not mark packets of length < MSS as GSO
David Miller	Re: skb_segment() questions
Shan Wei	[RFC PATCH net-next 2/5]IPv6:netfilter: Send an ICMPv6 "Fragment Reassembly Timeou...
Stanislaw Gruszka	[PATCH 1/4] bnx2x: use smp_mb() to keep ordering of read write operations
git:
Nicolas Sebrecht	git-svn died of signal 11 (was "3 failures on test t9100 (svn)")
Junio C Hamano	Re: [PATCH 2/2] Add url.<base>.pushInsteadOf: URL rewriting for push only
Martin Langhoff	Re: [PATCH] GIT commit statistics.
Alexandre Julliard	[PATCH] gitweb: Put back shortlog instead of graphiclog in the project list.
Josh Triplett	[PATCH 2/2] Add url.<base>.pushInsteadOf: URL rewriting for push only
openbsd-misc:
Taisto Qvist XX	Re: AMD GEODE LX-800 just works with kernel from install42.iso and kernelpanics wi...
Nico Meijer	Re: gOS Develop Kit with VIA pc-1 Processor Platform VIA C7-D
Andreas Bihlmaier	Re: jetway board sensors (Fintek F71805F)
admin	Drive a 2009 car from R799p/m
Antti Harri	Re: how to create a sha256 hash

Colocation donated by:

Syndicate