Re: [kernel-hardening] [PATCH] arm64: vdso: Mark vDSO code as read-only

From: David Brown
Date: Fri Feb 12 2016 - 19:32:30 EST

Next message: Stephen Boyd: "Re: [PATCH v2 6/8] power: cros_usbpd-charger: Add EC-based USB PD charger driver"
Previous message: Ben Hutchings: "Re: [PATCH] af_unix: Don't set err in unix_stream_read_generic unless there was an error"
In reply to: Ard Biesheuvel: "Re: [kernel-hardening] [PATCH] arm64: vdso: Mark vDSO code as read-only"
Next in thread: Ard Biesheuvel: "Re: [kernel-hardening] [PATCH] arm64: vdso: Mark vDSO code as read-only"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Feb 11, 2016 at 03:19:20PM +0100, Ard Biesheuvel wrote:

diff --git a/arch/arm64/kernel/vdso/vdso.S b/arch/arm64/kernel/vdso/vdso.S
index 60c1db5..db7c0f2 100644
--- a/arch/arm64/kernel/vdso/vdso.S
+++ b/arch/arm64/kernel/vdso/vdso.S
@@ -24,6 +24,7 @@
__PAGE_ALIGNED_DATA

^^ You can get rid of this now as well

Can we? The page is getting mapped to userspace, and if we didn't
page align it, we could leak kernel read-only data to every userspace
process.

David

Next message: Stephen Boyd: "Re: [PATCH v2 6/8] power: cros_usbpd-charger: Add EC-based USB PD charger driver"
Previous message: Ben Hutchings: "Re: [PATCH] af_unix: Don't set err in unix_stream_read_generic unless there was an error"
In reply to: Ard Biesheuvel: "Re: [kernel-hardening] [PATCH] arm64: vdso: Mark vDSO code as read-only"
Next in thread: Ard Biesheuvel: "Re: [kernel-hardening] [PATCH] arm64: vdso: Mark vDSO code as read-only"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]