[PATCH 1/4] kaslr: check user's config too when handle relocations

From: Baoquan He
Date: Fri Sep 05 2014 - 10:11:19 EST

Next message: Arnaldo Carvalho de Melo: "Re: [PATCH v2] perf tools: Fix build-id matching on vmlinux"
Previous message: Toshi Kani: "Re: [PATCH 1/5] x86, mm, pat: Set WT to PA4 slot of PAT MSR"
In reply to: Kees Cook: "Re: [PATCH 4/4] export the kernel image size KERNEL_IMAGE_SIZE"
Next in thread: Kees Cook: "Re: [PATCH 1/4] kaslr: check user's config too when handle relocations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

kaslr's action is splitted into 2 parts. The 1st is getting available memory
slots and randomly choose the kernel relocation address. After decompression
of kernel to the chosen place, the 2nd part begin to check if kaslr has got
a relocation address, and will do the relocations handling if yes.

However in current implementation, in the 2nd part, it doesn't check user's
config, just compare decompression output address and the LOAD_PHYSICAL_ADDR
where kernel was compiled to run. If they are equal, it means a kaslr is
taking action, and need do the relocation handling. This truly works when
bootloader always load kernel to LOAD_PHYSICAL_ADDR. But this doesn't always
happens. Kexec/kdump kernel loading is exceptional. Kdump/kexec can load
kernel anywhere, this is not fixed. So in this case, it will do the relocation
handling though user clearly set nokaslr in cmdline. This is not correct.

So in this patch, check user's config too in the 2nd part, namely in
handle_relocations().

Signed-off-by: Baoquan He <bhe@xxxxxxxxxx>
---
arch/x86/boot/compressed/aslr.c | 2 ++
arch/x86/boot/compressed/misc.c | 12 ++++++++++++
2 files changed, 14 insertions(+)

diff --git a/arch/x86/boot/compressed/aslr.c b/arch/x86/boot/compressed/aslr.c
index fc6091a..975b07b 100644
--- a/arch/x86/boot/compressed/aslr.c
+++ b/arch/x86/boot/compressed/aslr.c
@@ -292,11 +292,13 @@ unsigned char *choose_kernel_location(unsigned char *input,
#ifdef CONFIG_HIBERNATION
if (!cmdline_find_option_bool("kaslr")) {
debug_putstr("KASLR disabled by default...\n");
+ debug_putstr("No need to choose kernel relocation...\n");
goto out;
}
#else
if (cmdline_find_option_bool("nokaslr")) {
debug_putstr("KASLR disabled by cmdline...\n");
+ debug_putstr("No need to choose kernel relocation...\n");
goto out;
}
#endif
diff --git a/arch/x86/boot/compressed/misc.c b/arch/x86/boot/compressed/misc.c
index 57ab74d..7780a5b 100644
--- a/arch/x86/boot/compressed/misc.c
+++ b/arch/x86/boot/compressed/misc.c
@@ -238,6 +238,18 @@ static void handle_relocations(void *output, unsigned long output_len)
unsigned long min_addr = (unsigned long)output;
unsigned long max_addr = min_addr + output_len;

+#ifdef CONFIG_HIBERNATION
+ if (!cmdline_find_option_bool("kaslr")) {
+ debug_putstr("No relocation needed... ");
+ return;
+ }
+#else
+ if (cmdline_find_option_bool("nokaslr")) {
+ debug_putstr("No relocation needed... ");
+ return;
+ }
+#endif
+
/*
* Calculate the delta between where vmlinux was linked to load
* and where it was actually loaded.
--
1.8.5.3

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Arnaldo Carvalho de Melo: "Re: [PATCH v2] perf tools: Fix build-id matching on vmlinux"
Previous message: Toshi Kani: "Re: [PATCH 1/5] x86, mm, pat: Set WT to PA4 slot of PAT MSR"
In reply to: Kees Cook: "Re: [PATCH 4/4] export the kernel image size KERNEL_IMAGE_SIZE"
Next in thread: Kees Cook: "Re: [PATCH 1/4] kaslr: check user's config too when handle relocations"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]