Re: [PATCH v4 00/10] Function Granular KASLR

From: Joe Lawrence
Date: Wed Jul 22 2020 - 10:51:43 EST

Next message: Kuniyuki Iwashima: "Re: linux-next: manual merge of the bpf-next tree with the net tree"
Previous message: Alex Belits: "[PATCH v4 03/13] task_isolation: userspace hard isolation from kernel"
In reply to: Kees Cook: "Re: [PATCH v4 00/10] Function Granular KASLR"
Next in thread: Joe Lawrence: "Re: [PATCH v4 00/10] Function Granular KASLR"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 7/22/20 10:39 AM, Kees Cook wrote:

On Wed, Jul 22, 2020 at 11:27:30AM +0200, Miroslav Benes wrote:

Let me CC live-patching ML, because from a quick glance this is something
which could impact live patching code. At least it invalidates assumptions
which "sympos" is based on.

In a quick skim, it looks like the symbol resolution is using
kallsyms_on_each_symbol(), so I think this is safe? What's a good
selftest for live-patching?

Hi Kees,

I don't think any of the in-tree tests currently exercise the kallsyms/sympos end of livepatching.

I do have a local branch that does facilitate creating klp-relocations that do rely upon this feature -- I'll try to see if I can get those working with this patchset and report back later this week.

-- Joe

Next message: Kuniyuki Iwashima: "Re: linux-next: manual merge of the bpf-next tree with the net tree"
Previous message: Alex Belits: "[PATCH v4 03/13] task_isolation: userspace hard isolation from kernel"
In reply to: Kees Cook: "Re: [PATCH v4 00/10] Function Granular KASLR"
Next in thread: Joe Lawrence: "Re: [PATCH v4 00/10] Function Granular KASLR"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]