From mboxrd@z Thu Jan 1 00:00:00 1970 From: Ingo Molnar Subject: Re: [PATCH] Prefer kASLR over Hibernation Date: Thu, 7 Apr 2016 02:49:58 +0200 Message-ID: <20160407004958.GA27130@gmail.com> References: <20160406194404.GA11150@www.outflux.net> <20160406201716.GA14241@amd> <20160406214835.GA23620@gmail.com> <20160406215240.GA25339@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Return-path: Content-Disposition: inline In-Reply-To: Sender: linux-doc-owner@vger.kernel.org To: "Rafael J. Wysocki" Cc: Kees Cook , Linus Torvalds , "Rafael J. Wysocki" , Pavel Machek , Ard Biesheuvel , Matt Redfearn , Yves-Alexis Perez , Emrah Demir , Jonathan Corbet , the arch/x86 maintainers , "Rafael J. Wysocki" , Len Brown , Borislav Petkov , Andy Lutomirski , "open list:DOCUMENTATION" , "linux-pm@vger.kernel.org" , Linux Kernel Mailing List , "kernel-hardening@lists.openwall.com" List-Id: linux-pm@vger.kernel.org * Rafael J. Wysocki wrote: > [...] > > One of the weak points is the final jump, because it has to be done to the > physical location of the image kernel's entry point even though the virtual > addresses of it may differ between the boot and the image kernels. The seed is > not needed for that, only the physical address of the entry point. The boot > kernel doesn't have it today, though, because the virtual address of that is > passed in the image header. That should not be too difficult to change, however. I didn't realize we jumped to the image kernel as well - I (wrongly) assumed we kept the bootup kernel. That should indeed make hibernation mostly kASLR-invariant. Thanks, Ingo