Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Kees Cook <keescook@xxxxxxxxxxxx>
Subject: Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
From: Christopher Lameter <cl@xxxxxxxxx>
Date: Wed, 29 Jan 2020 16:43:30 +0000 (UTC)
Cc: Christian Borntraeger <borntraeger@xxxxxxxxxx>, Jiri Slaby <jslaby@xxxxxxx>, Julian Wiedmann <jwi@xxxxxxxxxxxxx>, Ursula Braun <ubraun@xxxxxxxxxxxxx>, Alexander Viro <viro@xxxxxxxxxxxxxxxxxx>, linux-kernel@xxxxxxxxxxxxxxx, David Windsor <dave@xxxxxxxxxxxx>, Pekka Enberg <penberg@xxxxxxxxxx>, David Rientjes <rientjes@xxxxxxxxxx>, Joonsoo Kim <iamjoonsoo.kim@xxxxxxx>, Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>, linux-mm@xxxxxxxxx, linux-xfs@xxxxxxxxxxxxxxx, Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, Christoph Hellwig <hch@xxxxxxxxxxxxx>, "David S. Miller" <davem@xxxxxxxxxxxxx>, Laura Abbott <labbott@xxxxxxxxxx>, Mark Rutland <mark.rutland@xxxxxxx>, "Martin K. Petersen" <martin.petersen@xxxxxxxxxx>, Paolo Bonzini <pbonzini@xxxxxxxxxx>, Christoffer Dall <christoffer.dall@xxxxxxxxxx>, Dave Kleikamp <dave.kleikamp@xxxxxxxxxx>, Jan Kara <jack@xxxxxxx>, Luis de Bethencourt <luisbg@xxxxxxxxxx>, Marc Zyngier <marc.zyngier@xxxxxxx>, Rik van Riel <riel@xxxxxxxxxx>, Matthew Garrett <mjg59@xxxxxxxxxx>, linux-fsdevel@xxxxxxxxxxxxxxx, linux-arch@xxxxxxxxxxxxxxx, netdev@xxxxxxxxxxxxxxx, kernel-hardening@xxxxxxxxxxxxxxxxxx, Vlastimil Babka <vbabka@xxxxxxx>, Michal Kubecek <mkubecek@xxxxxxx>
In-reply-to: <202001281457.FA11CC313A@keescook>
References: <1515636190-24061-1-git-send-email-keescook@chromium.org> <1515636190-24061-10-git-send-email-keescook@chromium.org> <9519edb7-456a-a2fa-659e-3e5a1ff89466@suse.cz> <201911121313.1097D6EE@keescook> <201911141327.4DE6510@keescook> <bfca96db-bbd0-d958-7732-76e36c667c68@suse.cz> <202001271519.AA6ADEACF0@keescook> <5861936c-1fe1-4c44-d012-26efa0c8b6e7@de.ibm.com> <202001281457.FA11CC313A@keescook>
User-agent: Alpine 2.21 (DEB 202 2017-01-01)

On Tue, 28 Jan 2020, Kees Cook wrote:

> > On the other hand not marking the DMA caches still seems questionable.
>
> My understanding is that exposing DMA memory to userspace copies can
> lead to unexpected results, especially for misbehaving hardware, so I'm
> not convinced this is a generically bad hardening choice.

"DMA" memory (and thus DMA caches) have nothing to do with DMA. Its a
legacy term. "DMA Memory" is memory limited to a certain
physical address boundary (old restrictions on certain devices only
supporting a limited number of address bits).

DMA can be done to NORMAL memory as well.

Follow-Ups:
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Christian Borntraeger

References:
- [PATCH v5 00/38] Hardened usercopy whitelisting
  - From: Kees Cook
- [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Kees Cook
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Jiri Slaby
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Kees Cook
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Kees Cook
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Jiri Slaby
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Kees Cook
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Christian Borntraeger
- Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
  - From: Kees Cook

Prev by Date: Re: Paging out when free memory is low but not exhausted (and available memory remains high)
Next by Date: Re: mmotm 2020-01-28-20-05 uploaded (objtool warnings)
Previous by thread: Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
Next by thread: Re: [kernel-hardening] [PATCH 09/38] usercopy: Mark kmalloc caches as usercopy caches
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Bugtraq] [Linux OMAP] [Linux MIPS] [eCos] [Asterisk Internet PBX] [Linux API]