From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from bombadil.infradead.org (bombadil.infradead.org [198.137.202.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id 2B33DC46CD2 for ; Wed, 24 Jan 2024 16:09:12 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=bombadil.20210309; h=Sender: Content-Transfer-Encoding:Content-Type:List-Subscribe:List-Help:List-Post: List-Archive:List-Unsubscribe:List-Id:In-Reply-To:MIME-Version:References: Message-ID:Subject:Cc:To:From:Date:Reply-To:Content-ID:Content-Description: Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID: List-Owner; bh=Ej+06VPH19CkzGxcYh2MbQAAvherkSa25lT57NA+Ihs=; b=cYKYaGVntKMW2q Eqol44zWEJyQfod+hFjOwZWmbyNzBakZspBpXgtBjI9UCRwQeZaylu34P4s0Lypny8RRVS5Gx/93W GtV4mHGJXOBnntIItDC4EGLCdXu7FcgkrOqwLj9PwqdRfU9cTzyjd3IsQEW9Exs74L7XqMFDYgN/9 y1EVXynO41AkCcWId+Tz4z1aXNQxVsHjs5kzQrkatxXUY8V+AgjfcHQJnfeQVE4QSjocF/bRCfDY+ 6GhBBtz8pZUK5/TUy141br4kb49cLXLLAWo576PxJ07CTo7X0enqSVBHLpsnG60KdXIawkHGoinHk 8Y7T7aGJLCeECkymMv+w==; Received: from localhost ([::1] helo=bombadil.infradead.org) by bombadil.infradead.org with esmtp (Exim 4.96 #2 (Red Hat Linux)) id 1rSfnp-0046kf-1u; Wed, 24 Jan 2024 16:08:37 +0000 Received: from mail-pl1-x632.google.com ([2607:f8b0:4864:20::632]) by bombadil.infradead.org with esmtps (Exim 4.96 #2 (Red Hat Linux)) id 1rSfnk-0046ha-30 for linux-arm-kernel@lists.infradead.org; Wed, 24 Jan 2024 16:08:36 +0000 Received: by mail-pl1-x632.google.com with SMTP id d9443c01a7336-1d7881b1843so4797235ad.3 for ; Wed, 24 Jan 2024 08:08:30 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; t=1706112510; x=1706717310; darn=lists.infradead.org; h=in-reply-to:content-transfer-encoding:content-disposition :mime-version:references:message-id:subject:cc:to:from:date:from:to :cc:subject:date:message-id:reply-to; bh=uwpskAl9LsN0AXCbwXO1lfWjVtroeO2kOOid+4UlMDA=; b=dPXaXZClubIGNPR7qejLrDaTU6ZnuwmVHH8XyJWgeq7IZH7oAX0tD84HsnnFMA8lRl DA5MOmOzBm5K8A0vHft92zC9pD90QXFdKCWJY6BDmIFB+27RHp7bLeRCrxonCoxgtNLj d5PSMiQOcq3joRqxWgZ5iAM4F5RHo72Z85fIY= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1706112510; x=1706717310; h=in-reply-to:content-transfer-encoding:content-disposition :mime-version:references:message-id:subject:cc:to:from:date :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=uwpskAl9LsN0AXCbwXO1lfWjVtroeO2kOOid+4UlMDA=; b=pKv3J+FSX3Mjm+QLKJu+j0yzKSrQAkGWrPGvySTbP0yO/rty2kHs7qwfQ39WphmTR7 GjTE0zeplf2spzXUwH97NhvLLARtqOBc6usrH6g200bEeIYH7E8eAS41f8M2xZNl2z/l niGPLzzg6mrEM1AschNvmWilK0wXcDwSy+idmkevvYQU3GmekVSvkjm6/5KWK41Z3snd WSvRO0VNMV3AkgDb4VwpCzrX/2HhlSWF2HH6MtizH/PailqmF/EZ9lOSGE7Y0zkgY8LO Nd84oQvdYwMvIMVjaPaS9YdhiH3dZTnb1xbLmR0pueK8XtRQCx9bMZv+CXAa3XvPuWnW LhVA== X-Gm-Message-State: AOJu0Yx9Tj9VxVhuP/Ioofs2nLTrXha6bV9dPc0Rh6AGQvUDpiWEOv4f N2hptsg4LpUe32TnRpzyTzRb3HqTdzKBATtYP6rqfGCkBYeO30uxZnEE+1WxNQ== X-Google-Smtp-Source: AGHT+IGqSafzwgjxpg5Yxg1Ud2WtYZsnhytXHIISl8WrkHaH3dJ1Txa9c/422e4HCjPEJaoWbtbd+w== X-Received: by 2002:a17:902:db07:b0:1d7:57bf:259 with SMTP id m7-20020a170902db0700b001d757bf0259mr1003726plx.121.1706112509796; Wed, 24 Jan 2024 08:08:29 -0800 (PST) Received: from www.outflux.net ([198.0.35.241]) by smtp.gmail.com with ESMTPSA id i10-20020a17090320ca00b001d737d51411sm6630106plb.227.2024.01.24.08.08.29 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 24 Jan 2024 08:08:29 -0800 (PST) Date: Wed, 24 Jan 2024 08:08:28 -0800 From: Kees Cook To: Yang Shi Cc: Ard Biesheuvel , Matthew Wilcox , Linux ARM , mail@horotw.com, linux-hardening@vger.kernel.org, Jakub Wilk , Salvatore Bonaccorso , Linux Memory Management List , William Kucharski Subject: Re: Limited/Broken functionality of ASLR for Libs >= 2MB Message-ID: <202401240808.F5659B75@keescook> References: <69fa6015256613ed10aee996e181ebd4@horotw.com> <87il3ur1ik.fsf@gentoo.org> <07c348caaf6b4c457ab4b452f53ed048@horotw.com> <202401231433.FB2D7FBD@keescook> MIME-Version: 1.0 Content-Disposition: inline In-Reply-To: X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20240124_080833_089035_ECE229DC X-CRM114-Status: GOOD ( 24.69 ) X-BeenThere: linux-arm-kernel@lists.infradead.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Sender: "linux-arm-kernel" Errors-To: linux-arm-kernel-bounces+linux-arm-kernel=archiver.kernel.org@lists.infradead.org T24gVHVlLCBKYW4gMjMsIDIwMjQgYXQgMDU6MDQ6MjJQTSAtMDgwMCwgWWFuZyBTaGkgd3JvdGU6 Cj4gT24gVHVlLCBKYW4gMjMsIDIwMjQgYXQgMjozN+KAr1BNIEtlZXMgQ29vayA8a2Vlc2Nvb2tA Y2hyb21pdW0ub3JnPiB3cm90ZToKPiA+Cj4gPiBPbiBUdWUsIEphbiAxNiwgMjAyNCBhdCAwOTow OTo0NUFNICswMTAwLCBBcmQgQmllc2hldXZlbCB3cm90ZToKPiA+ID4gKGNjIEtlZXMsIExBS01M KQo+ID4gPgo+ID4gPiBodHRwczovL2xrbWwua2VybmVsLm9yZy9yLzY5ZmE2MDE1MjU2NjEzZWQx MGFlZTk5NmUxODFlYmQ0JTQwaG9yb3R3LmNvbQo+ID4gPgo+ID4gPiBPbiBNb24sIDE1IEphbiAy MDI0IGF0IDIxOjQ2LCBNYXR0aGV3IFdpbGNveCA8d2lsbHlAaW5mcmFkZWFkLm9yZz4gd3JvdGU6 Cj4gPiA+ID4KPiA+ID4gLi4uCj4gPiA+ID4gWWVhaCwgSSBkb24ndCBrbm93IGVpdGhlci4gIE91 dHNpZGUgbXkgc2NvcGUgb2YgZXhwZXJ0aXNlLgo+ID4gPiA+Cj4gPiA+ID4gSSByZWNlaXZlZCBh IHN1Z2dlc3Rpb24gb2ZmLWxpc3QgdGhhdCB3ZSBvbmx5IGRvIHRoZSBQTUQgYWxpZ25tZW50IG9u Cj4gPiA+ID4gNjQtYml0LCB3aGljaCBzZWVtcyBxdWl0ZSByZWFzb25hYmxlIHRvIG1lLiAgQWZ0 ZXIgYWxsLCBJIGRvbid0IGNhcmUKPiA+ID4gPiBhYm91dCBwZXJmb3JtYW5jZSBvbiAzMi1iaXQg anVzdCBhcyBtdWNoIGFzIEkgZG9uJ3QgY2FyZSBhYm91dCBzZWN1cml0eQo+ID4gPiA+IG9uIDMy LWJpdC4KPiA+ID4gPgo+ID4gPgo+ID4gPiBGb3IgY29udGV4dCwgdGhlIGN1bHByaXQgaXMKPiA+ ID4KPiA+ID4gY29tbWl0IDE4NTRiYzZlMjQyMDQ3MjY3NmM1YzkwZDNkNmIxNWY2Y2Q2NDBlNDAK PiA+ID4gQXV0aG9yOiBXaWxsaWFtIEt1Y2hhcnNraSA8d2lsbGlhbS5rdWNoYXJza2lAb3JhY2xl LmNvbT4KPiA+ID4gRGF0ZTogICBTdW4gU2VwIDIyIDA4OjQzOjE1IDIwMTkgLTA0MDAKPiA+ID4K PiA+ID4gICAgIG1tL3JlYWRhaGVhZDogQWxpZ24gZmlsZSBtYXBwaW5ncyBmb3Igbm9uLURBWAo+ ID4gPgo+ID4gPiAgICAgV2hlbiB3ZSBoYXZlIHRoZSBvcHBvcnR1bml0eSB0byB1c2UgUE1EcyB0 byBtYXAgYSBmaWxlLCB3ZSB3YW50IHRvIGZvbGxvdwo+ID4gPiAgICAgdGhlIHNhbWUgcnVsZXMg YXMgREFYLgo+ID4gPgo+ID4gPiAgICAgU2lnbmVkLW9mZi1ieTogV2lsbGlhbSBLdWNoYXJza2kg PHdpbGxpYW0ua3VjaGFyc2tpQG9yYWNsZS5jb20+Cj4gPiA+ICAgICBTaWduZWQtb2ZmLWJ5OiBN YXR0aGV3IFdpbGNveCAoT3JhY2xlKSA8d2lsbHlAaW5mcmFkZWFkLm9yZz4KPiA+ID4KPiA+ID4g d2hpY2ggYWZmZWN0cyAqYWxsKiAzMi1iaXQgYXJjaGl0ZWN0dXJlcyBub3QganVzdCBpNjg2LiAz Mi1iaXQgQVJNCj4gPiA+IHVzZXIgc3BhY2UgaXMgc3RpbGwgYmVpbmcgZGVwbG95ZWQgd2lkZWx5 LCBldmVuIG9uIGFybTY0IENocm9tZWJvb2tzCj4gPiA+IHJ1bm5pbmcgNjQtYml0IGtlcm5lbHMg KGF0IGxlYXN0IHVwIHVudGlsIHJlY2VudGx5KSBzbyB1bmZvcnR1bmF0ZWx5LAo+ID4gPiB3ZSdy ZSBub3QgcXVpdGUgYXQgdGhlIHBvaW50IHlldCB3aGVyZSB3ZSBjYW4ganVzdCBsZXQgaXQgcm90 Lgo+ID4KPiA+IElzIHRoaXMgcmVsYXRlZCBhdCBhbGwgdG8gdGhpcyB0aHJlYWQgYXMgd2VsbD8K PiA+IGh0dHBzOi8vbG9yZS5rZXJuZWwub3JnL2xrbWwvMjAyMjA4MDkxNDI0NTcuNDc1MTIyOWZA aW1sYWRyaXMuc3VycmllbC5jb20vCj4gCj4gWWVzCj4gCj4gPgo+ID4gQ2FuIHdlIGF2b2lkIHRo aXMgb24gMzItYml0IG9yIGF0IGxlYXN0IG5vdCBtaXNsZWFkIHVzZXJzcGFjZSBhYm91dCB0aGUK PiA+IGF2YWlsYWJsZSBlbnRyb3B5IHZpc2libGUgaW4gL3Byb2Mvc3lzL3ZtL21tYXBfcm5kKl9i aXRzID8KPiAKPiBodHRwczovL2xvcmUua2VybmVsLm9yZy9saW51eC1tbS8yMDI0MDExODEzMzUw NC4yOTEwOTU1LTEtc2h5ODI4MzAxQGdtYWlsLmNvbS8KPiAKPiBUaGlzIHBhdGNoIGJhc2ljYWxs eSBtYWRlIHRocF9nZXRfdW5tYXBwZWRfYXJlYSBuby1vcCBvbiAzMiBiaXQuCgpBaC1oYSEgT2th eSwgdGhhbmtzIHZlcnkgbXVjaC4gSSBtaXNzZWQgdGhpcyBsYW5kaW5nLiA6KQoKLS0gCktlZXMg Q29vawoKX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbGlu dXgtYXJtLWtlcm5lbCBtYWlsaW5nIGxpc3QKbGludXgtYXJtLWtlcm5lbEBsaXN0cy5pbmZyYWRl YWQub3JnCmh0dHA6Ly9saXN0cy5pbmZyYWRlYWQub3JnL21haWxtYW4vbGlzdGluZm8vbGludXgt YXJtLWtlcm5lbAo=