From: WANG Rui <r@hev.cc>
To: Huacai Chen <chenhuacai@kernel.org>, Ard Biesheuvel <ardb@kernel.org>
Cc: WANG Xuerui <kernel@xen0n.name>,
Ilias Apalodimas <ilias.apalodimas@linaro.org>,
Lisa Robinson <lisa@bytefly.space>,
loongarch@lists.linux.dev, linux-efi@vger.kernel.org,
linux-kernel@vger.kernel.org, WANG Rui <r@hev.cc>
Subject: [PATCH v2 0/2] LoongArch: Move KASLR to EFI stub to avoid initrd overlap
Date: Tue, 28 Apr 2026 12:01:57 +0800 [thread overview]
Message-ID: <20260428040159.1065822-1-r@hev.cc> (raw)
Changes since [v1]:
* Drop the patch "LoongArch: Allow rdtime_h() and rdtime_l() in 64-bit builds".
* Use random_get_entropy() instead of rdtime_l().
This series addresses a potential overlap issue between the kernel
image and the initrd when KASLR is enabled.
In the normal boot flow, the bootloader is responsible for loading
both vmlinux and the initrd, and it can guarantee that the two do
not overlap in memory. However, this assumption only holds as long
as neither image changes its location afterwards.
The in-kernel KASLR implementation breaks that assumption. When the
initrd is placed close to the kernel image, randomizing the kernel
location at runtime may move it into the initrd region, leading to
memory corruption early during boot.
To fix this, this series moves the KASLR logic out of the kernel
proper and into the EFI stub. With this change, the final placement
of both the kernel image and the initrd is determined by the EFI
memory allocator. This ensures that the two allocations are
coordinated and cannot overlap.
Functionally, the kernel still supports KASLR as before, but the
randomization now happens before the kernel is entered, rather than
during early kernel relocation.
[v1]: https://lore.kernel.org/loongarch/20260427104721.47724-1-r@hev.cc
WANG Rui (2):
efi/loongarch: Randomize kernel preferred address for KASLR
LoongArch: Skip relocation-time KASLR if it has already been applied
arch/loongarch/Kconfig | 2 +-
arch/loongarch/include/asm/efi.h | 4 +++-
arch/loongarch/kernel/relocate.c | 4 ++++
drivers/firmware/efi/libstub/loongarch.c | 16 ++++++++++++++++
4 files changed, 24 insertions(+), 2 deletions(-)
--
2.54.0
next reply other threads:[~2026-04-28 4:02 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-04-28 4:01 WANG Rui [this message]
2026-04-28 4:01 ` [PATCH v2 1/2] efi/loongarch: Randomize kernel preferred address for KASLR WANG Rui
2026-04-28 5:01 ` Huacai Chen
2026-04-28 14:34 ` WANG Rui
2026-04-28 4:01 ` [PATCH v2 2/2] LoongArch: Skip relocation-time KASLR if it has already been applied WANG Rui
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260428040159.1065822-1-r@hev.cc \
--to=r@hev.cc \
--cc=ardb@kernel.org \
--cc=chenhuacai@kernel.org \
--cc=ilias.apalodimas@linaro.org \
--cc=kernel@xen0n.name \
--cc=linux-efi@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=lisa@bytefly.space \
--cc=loongarch@lists.linux.dev \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox