Re: x86/mm: Found insecure W+X mapping at address (ptrval)/0xc00a0000

From: Borislav Petkov
Date: Thu Oct 04 2018 - 04:48:20 EST

Next message: Borislav Petkov: "Re: x86/mm: Found insecure W+X mapping at address (ptrval)/0xc00a0000"
Previous message: syzbot: "KASAN: use-after-free Read in sctp_id2assoc"
In reply to: Joerg Roedel: "Re: x86/mm: Found insecure W+X mapping at address (ptrval)/0xc00a0000"
Next in thread: Thomas Gleixner: "Re: x86/mm: Found insecure W+X mapping at address (ptrval)/0xc00a0000"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Oct 04, 2018 at 10:43:18AM +0200, Joerg Roedel wrote:
> Yeah, that's what I also found out back then, the region needs to be WX.
> So we can either leave with the warning, as we know it is harmless and
> where it comes from or implement an exception in the checking code for
> that region.

The second thing is what I'm thinking too.

Or, a 3rd: not direct-map that first range at all. Commenting out the
ISA range mapping didn't have any adverse effects on my system here, for
example. But then those other mappings appeared:

https://lkml.kernel.org/r/20181003212255.GB28361@xxxxxxx

for which I have no explanation yet how they came about.

This needs to be understood fully before we do anything. But it is
32-bit so it gets preempted by more important things all the time :)

--
Regards/Gruss,
Boris.

Good mailing practices for 400: avoid top-posting and trim the reply.

Next message: Borislav Petkov: "Re: x86/mm: Found insecure W+X mapping at address (ptrval)/0xc00a0000"
Previous message: syzbot: "KASAN: use-after-free Read in sctp_id2assoc"
In reply to: Joerg Roedel: "Re: x86/mm: Found insecure W+X mapping at address (ptrval)/0xc00a0000"
Next in thread: Thomas Gleixner: "Re: x86/mm: Found insecure W+X mapping at address (ptrval)/0xc00a0000"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]