From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1756466AbcGHUjt (ORCPT <rfc822;w@1wt.eu>);
	Fri, 8 Jul 2016 16:39:49 -0400
Received: from terminus.zytor.com ([198.137.202.10]:35888 "EHLO
	terminus.zytor.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1753469AbcGHUj3 (ORCPT
	<rfc822;linux-kernel@vger.kernel.org>);
	Fri, 8 Jul 2016 16:39:29 -0400
Date: Fri, 8 Jul 2016 13:36:40 -0700
From: tip-bot for Thomas Garnier <tipbot@zytor.com>
Message-ID: <tip-90397a41779645d3abba5599f6bb538fdcab9339@git.kernel.org>
Cc: mingo@kernel.org, kuleshovmail@gmail.com, hpa@zytor.com,
        boris.ostrovsky@oracle.com, kirill.shutemov@linux.intel.com,
        toshi.kani@hpe.com, brgerst@gmail.com, dyoung@redhat.com,
        alpopov@ptsecurity.com, JBeulich@suse.com, dvyukov@google.com,
        schwidefsky@de.ibm.com, corbet@lwn.net, tglx@linutronix.de,
        bp@alien8.de, guangrong.xiao@linux.intel.com,
        akpm@linux-foundation.org, matt@codeblueprint.co.uk,
        aneesh.kumar@linux.vnet.ibm.com, lv.zheng@intel.com,
        dave.hansen@linux.intel.com, jpoimboe@redhat.com,
        dan.j.williams@intel.com, luto@kernel.org, keescook@chromium.org,
        thgarnie@google.com, borntraeger@de.ibm.com, dvlasenk@redhat.com,
        bp@suse.de, bhe@redhat.com, jgross@suse.com, jroedel@suse.de,
        linux-kernel@vger.kernel.org, torvalds@linux-foundation.org,
        peterz@infradead.org, yinghai@kernel.org, sds@tycho.nsa.gov,
        msalter@redhat.com
Reply-To: bp@alien8.de, tglx@linutronix.de, guangrong.xiao@linux.intel.com,
        akpm@linux-foundation.org, aneesh.kumar@linux.vnet.ibm.com,
        matt@codeblueprint.co.uk, dvyukov@google.com, JBeulich@suse.com,
        corbet@lwn.net, schwidefsky@de.ibm.com, toshi.kani@hpe.com,
        brgerst@gmail.com, alpopov@ptsecurity.com, dyoung@redhat.com,
        mingo@kernel.org, hpa@zytor.com, boris.ostrovsky@oracle.com,
        kuleshovmail@gmail.com, kirill.shutemov@linux.intel.com,
        peterz@infradead.org, torvalds@linux-foundation.org, sds@tycho.nsa.gov,
        msalter@redhat.com, yinghai@kernel.org, dvlasenk@redhat.com,
        bp@suse.de, bhe@redhat.com, jgross@suse.com,
        linux-kernel@vger.kernel.org, jroedel@suse.de, thgarnie@google.com,
        keescook@chromium.org, borntraeger@de.ibm.com,
        dave.hansen@linux.intel.com, lv.zheng@intel.com,
        dan.j.williams@intel.com, luto@kernel.org, jpoimboe@redhat.com
In-Reply-To: <1466556426-32664-10-git-send-email-keescook@chromium.org>
References: <1466556426-32664-10-git-send-email-keescook@chromium.org>
To: linux-tip-commits@vger.kernel.org
Subject: [tip:x86/boot] x86/mm: Add memory hotplug support for KASLR memory
 randomization
Git-Commit-ID: 90397a41779645d3abba5599f6bb538fdcab9339
X-Mailer: tip-git-log-daemon
Robot-ID: <tip-bot.git.kernel.org>
Robot-Unsubscribe: Contact <mailto:hpa@kernel.org> to get blacklisted from
 these emails
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset=UTF-8
Content-Disposition: inline
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Commit-ID:  90397a41779645d3abba5599f6bb538fdcab9339
Gitweb:     http://git.kernel.org/tip/90397a41779645d3abba5599f6bb538fdcab9339
Author:     Thomas Garnier <thgarnie@google.com>
AuthorDate: Tue, 21 Jun 2016 17:47:06 -0700
Committer:  Ingo Molnar <mingo@kernel.org>
CommitDate: Fri, 8 Jul 2016 17:35:21 +0200

x86/mm: Add memory hotplug support for KASLR memory randomization

Add a new option (CONFIG_RANDOMIZE_MEMORY_PHYSICAL_PADDING) to define
the padding used for the physical memory mapping section when KASLR
memory is enabled. It ensures there is enough virtual address space when
CONFIG_MEMORY_HOTPLUG is used. The default value is 10 terabytes. If
CONFIG_MEMORY_HOTPLUG is not used, no space is reserved increasing the
entropy available.

Signed-off-by: Thomas Garnier <thgarnie@google.com>
Signed-off-by: Kees Cook <keescook@chromium.org>
Cc: Alexander Kuleshov <kuleshovmail@gmail.com>
Cc: Alexander Popov <alpopov@ptsecurity.com>
Cc: Andrew Morton <akpm@linux-foundation.org>
Cc: Andy Lutomirski <luto@kernel.org>
Cc: Aneesh Kumar K.V <aneesh.kumar@linux.vnet.ibm.com>
Cc: Baoquan He <bhe@redhat.com>
Cc: Boris Ostrovsky <boris.ostrovsky@oracle.com>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Borislav Petkov <bp@suse.de>
Cc: Brian Gerst <brgerst@gmail.com>
Cc: Christian Borntraeger <borntraeger@de.ibm.com>
Cc: Dan Williams <dan.j.williams@intel.com>
Cc: Dave Hansen <dave.hansen@linux.intel.com>
Cc: Dave Young <dyoung@redhat.com>
Cc: Denys Vlasenko <dvlasenk@redhat.com>
Cc: Dmitry Vyukov <dvyukov@google.com>
Cc: H. Peter Anvin <hpa@zytor.com>
Cc: Jan Beulich <JBeulich@suse.com>
Cc: Joerg Roedel <jroedel@suse.de>
Cc: Jonathan Corbet <corbet@lwn.net>
Cc: Josh Poimboeuf <jpoimboe@redhat.com>
Cc: Juergen Gross <jgross@suse.com>
Cc: Kirill A. Shutemov <kirill.shutemov@linux.intel.com>
Cc: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Lv Zheng <lv.zheng@intel.com>
Cc: Mark Salter <msalter@redhat.com>
Cc: Martin Schwidefsky <schwidefsky@de.ibm.com>
Cc: Matt Fleming <matt@codeblueprint.co.uk>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Stephen Smalley <sds@tycho.nsa.gov>
Cc: Thomas Gleixner <tglx@linutronix.de>
Cc: Toshi Kani <toshi.kani@hpe.com>
Cc: Xiao Guangrong <guangrong.xiao@linux.intel.com>
Cc: Yinghai Lu <yinghai@kernel.org>
Cc: kernel-hardening@lists.openwall.com
Cc: linux-doc@vger.kernel.org
Link: http://lkml.kernel.org/r/1466556426-32664-10-git-send-email-keescook@chromium.org
Signed-off-by: Ingo Molnar <mingo@kernel.org>
---
 arch/x86/Kconfig    | 15 +++++++++++++++
 arch/x86/mm/kaslr.c |  7 ++++++-
 2 files changed, 21 insertions(+), 1 deletion(-)

diff --git a/arch/x86/Kconfig b/arch/x86/Kconfig
index 9719b8e..703413f 100644
--- a/arch/x86/Kconfig
+++ b/arch/x86/Kconfig
@@ -2010,6 +2010,21 @@ config RANDOMIZE_MEMORY
 
 	   If unsure, say N.
 
+config RANDOMIZE_MEMORY_PHYSICAL_PADDING
+	hex "Physical memory mapping padding" if EXPERT
+	depends on RANDOMIZE_MEMORY
+	default "0xa" if MEMORY_HOTPLUG
+	default "0x0"
+	range 0x1 0x40 if MEMORY_HOTPLUG
+	range 0x0 0x40
+	---help---
+	   Define the padding in terabytes added to the existing physical
+	   memory size during kernel memory randomization. It is useful
+	   for memory hotplug support but reduces the entropy available for
+	   address randomization.
+
+	   If unsure, leave at the default value.
+
 config HOTPLUG_CPU
 	bool "Support for hot-pluggable CPUs"
 	depends on SMP
diff --git a/arch/x86/mm/kaslr.c b/arch/x86/mm/kaslr.c
index c939cfe..26dccd6 100644
--- a/arch/x86/mm/kaslr.c
+++ b/arch/x86/mm/kaslr.c
@@ -92,8 +92,13 @@ void __init kernel_randomize_memory(void)
 	if (!kaslr_memory_enabled())
 		return;
 
+	/*
+	 * Update Physical memory mapping to available and
+	 * add padding if needed (especially for memory hotplug support).
+	 */
 	BUG_ON(kaslr_regions[0].base != &page_offset_base);
-	memory_tb = ((max_pfn << PAGE_SHIFT) >> TB_SHIFT);
+	memory_tb = ((max_pfn << PAGE_SHIFT) >> TB_SHIFT) +
+		CONFIG_RANDOMIZE_MEMORY_PHYSICAL_PADDING;
 
 	/* Adapt phyiscal memory region size based on available memory */
 	if (memory_tb < kaslr_regions[0].size_tb)