On Mon, Aug 7, 2017 at 10:24 AM, Dmitry Vyukov <dvyukov@xxxxxxxxxx> wrote: > The recent "binfmt_elf: use ELF_ET_DYN_BASE only for PIE" patch: > https://github.com/torvalds/linux/commit/eab09532d40090698b05a07c1c87f39fdbc5fab5 > breaks user-space AddressSanitizer. AddressSanitizer makes assumptions > about address space layout for substantial performance gains. There > are multiple people complaining about this already: > https://github.com/google/sanitizers/issues/837 > https://twitter.com/kayseesee/status/894594085608013825 > https://bugzilla.kernel.org/show_bug.cgi?id=196537 > AddressSanitizer maps shadow memory at [0x00007fff7000-0x10007fff7fff] > expecting that non-pie binaries will be below 2GB and pie > binaries/modules will be at 0x55 or 0x7f. This is not the first time > kernel address space shuffling breaks sanitizers. The last one was the > move to 0x55. What are the requirements for 32-bit and 64-bit memory layouts for ASan currently, so we can adjust the ET_DYN base to work with existing ASan? I would note that on 64-bit the ELF_ET_DYN_BASE adjustment avoids the entire 2GB space to stay out of the way of 32-bit address-using VMs, for example. What ranges should be avoided currently? We need to balance this against the need to keep the PIE away from a growing heap... > Is it possible to make this change less aggressive and keep the > executable under 2GB? _Under_ 2GB? It's possible we're going to need some VM tunable to adjust these things if we're facing incompatible requirements... ASan does seem especially fragile about these kinds of changes. Can future versions of ASan be more dynamic about this? -Kees -- Kees Cook Pixel Security -- To unsubscribe, send a message with 'unsubscribe linux-mm' in the body to majordomo@xxxxxxxxx. For more info on Linux MM, see: http://www.linux-mm.org/ . Don't email: <a href=mailto:"dont@xxxxxxxxx";> email@xxxxxxxxx </a>
