Re: [PATCH v4 1/2 fix] arm64: refactor the rodata=xxx

From: Shijie Huang
Date: Fri Dec 13 2024 - 03:46:57 EST

Next message: Md Sadre Alam: "Re: [PATCH 0/3] Enable TRNG support"
Previous message: Kuniyuki Iwashima: "Re: [syzbot] [wireless?] BUG: sleeping function called from invalid context in wext_netdev_notifier_call"
In reply to: Ard Biesheuvel: "Re: [PATCH v4 1/2 fix] arm64: refactor the rodata=xxx"
Next in thread: Huang Shijie: "[PATCH v4 2/2] arm64/Kconfig: Remove CONFIG_RODATA_FULL_DEFAULT_ENABLED"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2024/12/13 16:26, Ard Biesheuvel wrote:

How do you envisage 'noalias' becoming a security feature? The point

for the case 2) above, if its linear alias is also mapped as read-only,

can we think it is safe as the original "rodata=full"?

No, it is not. Why would we bother with rodata=full (which is costly
in terms of TLB pressure) if rodata=noalias is equally safe?

okay, thanks.

I will wait for two days, and send out the new patch if there no other comment.

Thanks

Huang Shijie

Next message: Md Sadre Alam: "Re: [PATCH 0/3] Enable TRNG support"
Previous message: Kuniyuki Iwashima: "Re: [syzbot] [wireless?] BUG: sleeping function called from invalid context in wext_netdev_notifier_call"
In reply to: Ard Biesheuvel: "Re: [PATCH v4 1/2 fix] arm64: refactor the rodata=xxx"
Next in thread: Huang Shijie: "[PATCH v4 2/2] arm64/Kconfig: Remove CONFIG_RODATA_FULL_DEFAULT_ENABLED"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]