On Tue, 2 Feb 2021 16:19:20 -0600 Timur Tabi <timur@xxxxxxxxxx> wrote: > On 2/2/21 3:52 PM, Kees Cook wrote: > >> A large warning message is displayed if this option is enabled, > >> because unhashed addresses, while useful for debugging, exposes > >> kernel addresses which can be a security risk. > > > Linus has expressly said "no" to things like this in the past: > > https://lore.kernel.org/lkml/CA+55aFwieC1-nAs+NFq9RTwaR8ef9hWa4MjNBWL41F-8wM49eA@xxxxxxxxxxxxxx/ > Maybe I misunderstood, but I thought this is what Vlastimil, Petr, > Sergey, John, and Steven asked for. Maybe Linus changed his mind since then? "I also suspect that everybody has already accepted that KASLR isn't really working locally anyway (due to all the hw leak models with cache and TLB timing), so anybody who can look at kernel messages already probably could figure most of those things out." https://lore.kernel.org/r/CAHk-=wjnEV2E6vCRxv5S5m27iOjHeVWNbfK=JV8qxot4Do-FgA@xxxxxxxxxxxxxx -- Steve
