From: "H. Peter Anvin" <hpa@zytor.com>
To: Baoquan He <bhe@redhat.com>, linux-kernel@vger.kernel.org
Cc: tglx@linutronix.de, mingo@redhat.com, x86@kernel.org,
keescook@chromium.org, vgoyal@redhat.com, whissi@whissi.de
Subject: Re: [PATCH 0/6] randomize kernel physical address and virtual address separately
Date: Mon, 02 Feb 2015 08:42:19 -0800 [thread overview]
Message-ID: <54CFA8EB.8050905@zytor.com> (raw)
In-Reply-To: <1421811437-2787-1-git-send-email-bhe@redhat.com>
On 01/20/2015 07:37 PM, Baoquan He wrote:
>
> Leftover problem:
> hpa want to see the physical randomization can cover the whole physical memory. I
> checked code and found it's hard to do. Because in arch/x86/boot/compressed/head_64.S
> an identity mapping of 4G is built and then kaslr and decompressing are done. The #PF
> handler solution which he suggested is only available after jump into decompressed
> kernel, namely in arch/x86/kernel/head_64.S. I didn't think of a way to do the whole
> memory covering for physical address randomization, any suggestion or idea?
>
Basically, it means adding an IDT and #PF handler to the decompression
code. Not really all that complex.
-hpa
next prev parent reply other threads:[~2015-02-02 16:42 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-01-21 3:37 [PATCH 0/6] randomize kernel physical address and virtual address separately Baoquan He
2015-01-21 3:37 ` [PATCH 1/6] remove a unused function parameter Baoquan He
2015-01-21 3:37 ` [PATCH 2/6] a bug that relocation can not be handled when kernel is loaded above 2G Baoquan He
2015-01-21 3:37 ` [PATCH 3/6] Introduce a function to randomize the kernel text mapping address Baoquan He
2015-01-21 3:37 ` [PATCH 4/6] adapt choose_kernel_location to add the kernel virtual address randomzation Baoquan He
2015-01-21 3:37 ` [PATCH 5/6] change the relocations behavior for kaslr on x86_64 Baoquan He
2015-01-21 3:37 ` [PATCH 6/6] extend the upper limit of kernel physical address randomization to 4G Baoquan He
2015-01-21 4:19 ` [PATCH 0/6] randomize kernel physical address and virtual address separately Andy Lutomirski
2015-01-21 4:46 ` Baoquan He
2015-02-01 8:10 ` Baoquan He
2015-02-01 13:13 ` Andy Lutomirski
2015-02-02 9:34 ` Baoquan He
2015-02-02 12:10 ` Baoquan He
2015-01-21 6:18 ` Kees Cook
2015-02-02 16:42 ` H. Peter Anvin [this message]
2015-02-03 15:30 ` Baoquan He
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=54CFA8EB.8050905@zytor.com \
--to=hpa@zytor.com \
--cc=bhe@redhat.com \
--cc=keescook@chromium.org \
--cc=linux-kernel@vger.kernel.org \
--cc=mingo@redhat.com \
--cc=tglx@linutronix.de \
--cc=vgoyal@redhat.com \
--cc=whissi@whissi.de \
--cc=x86@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.