Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753065AbaKJWDr (ORCPT ); Mon, 10 Nov 2014 17:03:47 -0500 Received: from mail-lb0-f182.google.com ([209.85.217.182]:54366 "EHLO mail-lb0-f182.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751834AbaKJWDp (ORCPT ); Mon, 10 Nov 2014 17:03:45 -0500 MIME-Version: 1.0 In-Reply-To: References: <43c88012a4959cd427ab634906e697fbc524e847.1414604015.git.luto@amacapital.net> From: Andy Lutomirski Date: Mon, 10 Nov 2014 14:03:23 -0800 Message-ID: Subject: Re: [PATCH v2] all arches, signal: Move restart_block to struct task_struct To: Thomas Gleixner Cc: "linux-kernel@vger.kernel.org" , Andrew Morton , linux-arch , Al Viro , Richard Weinberger , "H. Peter Anvin" , Ingo Molnar , Kees Cook Content-Type: text/plain; charset=UTF-8 Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Oct 29, 2014 at 11:12 AM, Thomas Gleixner wrote: > On Wed, 29 Oct 2014, Andy Lutomirski wrote: > >> If an attacker can cause a controlled kernel stack overflow, >> overwriting the restart block is a very juicy exploit target. >> Moving the restart block to struct task_struct prevents this >> exploit. >> >> Note that there are other fields in thread_info that are also easy >> targets, at least on some architectures. >> >> It's also a decent simplification, since the restart code is more or >> less identical on all architectures. > > I think that's the most important change. Moving common stuff into > common code. The side effect of slightly reducing the attack surface > is nice, but as Al pointed out not really the big win here. Having gotten exactly zero feedback from any arch maintainer outside of x86, am I supposed to pester people further? --Andy > > Thanks, > > tglx -- Andy Lutomirski AMA Capital Management, LLC -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/