Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode

From: Christoph Hellwig
Date: Thu May 04 2017 - 11:48:00 EST

Next message: Petr Mladek: "[PATCH v2] printk: Use the main logbuf in NMI when logbuf_lock is available"
Previous message: Dan Williams: "Re: [PATCH v3 2/4] ACPICA: Tables: Add mechanism to allow to balance late stage acpi_get_table() independently"
In reply to: Daniel Gruss: "Re: [kernel-hardening] [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Next in thread: Daniel Gruss: "Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, May 04, 2017 at 12:02:47PM +0200, Daniel Gruss wrote:
> After several recent works [1,2,3] KASLR on x86_64 was basically considered
> dead by many researchers. We have been working on an efficient but effective
> fix for this problem and found that not mapping the kernel space when
> running in user mode is the solution to this problem [4] (the corresponding
> paper [5] will be presented at ESSoS17).

I'll try to read the paper. In the meantime: how different is your
approach from then one here?

https://lwn.net/Articles/39283/

and how different is the performance impact?

Next message: Petr Mladek: "[PATCH v2] printk: Use the main logbuf in NMI when logbuf_lock is available"
Previous message: Dan Williams: "Re: [PATCH v3 2/4] ACPICA: Tables: Add mechanism to allow to balance late stage acpi_get_table() independently"
In reply to: Daniel Gruss: "Re: [kernel-hardening] [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Next in thread: Daniel Gruss: "Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]