Received: by 10.223.176.5 with SMTP id f5csp997823wra;
        Sat, 3 Feb 2018 15:32:59 -0800 (PST)
X-Google-Smtp-Source: AH8x224c8sjTxxdSC5bRnKb7TokVuTqbjBvqdmKoeZMNowkqYODoyf2vRySqmJ0Hcb8GL5xa7oW/
X-Received: by 10.99.109.70 with SMTP id i67mr8181291pgc.109.1517700779648;
        Sat, 03 Feb 2018 15:32:59 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1517700779; cv=none;
        d=google.com; s=arc-20160816;
        b=cBBwQb1/jMV14s38vSqPQDXmGsCNFqUYu/R4/hi3JCeJw+J+HbuB5IMHnvvrzboJYj
         DA/ICMGlkxqP5zh/oAdQdwNoCq7TdgSyZlOpHnVX2tgRfLieY5b8TPYavprD74Bchi14
         quXvqwR3kXY5sQbAZtIfol8rLxcnwutsWCPeRDkgW7ywONrq9Lme8b6p6CMUbw+qYKWW
         NcDD3RKy9vOv1u+I8Qh7tMMlEQsYh8jHLZ2XIA0sVxRYzvwHnrUa7tEYx/ZOMS54b4mK
         P0V4il53vD3Ou9+Y0V1f+qJ7NJzW++LsgLbrJMZ6wYUu3UU7kj8w/tpW03A/APQPbcdW
         HYEw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:in-reply-to:mime-version:user-agent:date
         :message-id:references:cc:to:from:subject:arc-authentication-results;
        bh=UJfW3k1FEOspoCZKKwsbTkb9ZhwuYDS6yHGbat9y+rA=;
        b=sOobOPE6WowKEsHBEBxgclsg/b20Z/H65lL37Yz0EODRtUIQZSh/KdV9ZpF7Myj2CN
         cg/GkbWEm3/Zn0DrQR8fB0xvTsk+SNFORXuajsnNj9ZfVH6BXtXS/bDZpWrLYK1q8gYN
         4gCRbsjsFWyaJ3gYWHkKRfDZP+6TGNtsnlQa1rkMa3g0MHmx/cMntDFl1Yeymx6j7fIb
         hijNz7IebqZxUeFeACYXKAWmzcwwOJABCYDxFQQIdQrvfPKhP7PA8+nhGWpbtIIOSHmn
         acl1q/7C/wQv8QXexrJjh/5PerqxSUuqEek1FfM/E7G+8jMVmw7Kd5eTFMxlTbwzrjeA
         iAZw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id r14si359772pgs.213.2018.02.03.15.32.45;
        Sat, 03 Feb 2018 15:32:59 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1752990AbeBCT5j (ORCPT <rfc822;epopevad@gmail.com> + 99 others);
        Sat, 3 Feb 2018 14:57:39 -0500
Received: from lhrrgout.huawei.com ([194.213.3.17]:24962 "EHLO huawei.com"
        rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP
        id S1752702AbeBCT5b (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 3 Feb 2018 14:57:31 -0500
Received: from LHREML714-CAH.china.huawei.com (unknown [172.18.7.107])
        by Forcepoint Email with ESMTP id BF2824F63A9EA;
        Sat,  3 Feb 2018 19:57:18 +0000 (GMT)
Received: from [10.122.225.51] (10.122.225.51) by smtpsuk.huawei.com
 (10.201.108.37) with Microsoft SMTP Server (TLS) id 14.3.361.1; Sat, 3 Feb
 2018 19:57:19 +0000
Subject: Re: [kernel-hardening] [PATCH 4/6] Protectable Memory
From:   Igor Stoppa <igor.stoppa@huawei.com>
To:     Christopher Lameter <cl@linux.com>,
        Matthew Wilcox <willy@infradead.org>,
        Boris Lukashev <blukashev@sempervictus.com>
CC:     Jann Horn <jannh@google.com>, <jglisse@redhat.com>,
        Kees Cook <keescook@chromium.org>,
        Michal Hocko <mhocko@kernel.org>,
        Laura Abbott <labbott@redhat.com>,
        Christoph Hellwig <hch@infradead.org>,
        <linux-security-module@vger.kernel.org>, <linux-mm@kvack.org>,
        kernel list <linux-kernel@vger.kernel.org>,
        Kernel Hardening <kernel-hardening@lists.openwall.com>
References: <20180124175631.22925-1-igor.stoppa@huawei.com>
 <20180124175631.22925-5-igor.stoppa@huawei.com>
 <CAG48ez0JRU8Nmn7jLBVoy6SMMrcj46R0_R30Lcyouc4R9igi-g@mail.gmail.com>
 <20180126053542.GA30189@bombadil.infradead.org>
 <alpine.DEB.2.20.1802021236510.31548@nuc-kabylake>
 <f2ddaed0-313e-8664-8a26-9d10b66ed0c5@huawei.com>
Message-ID: <b75b5903-0177-8ad9-5c2b-fc63438fb5f2@huawei.com>
Date:   Sat, 3 Feb 2018 21:57:13 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101
 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <f2ddaed0-313e-8664-8a26-9d10b66ed0c5@huawei.com>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-Originating-IP: [10.122.225.51]
X-CFilter-Loop: Reflected
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

>> On Thu, 25 Jan 2018, Matthew Wilcox wrote:

>>> It's worth having a discussion about whether we want the pmalloc API
>>> or whether we want a slab-based API.  
I'd love to have some feedback specifically about the API.

I have also some idea about userspace and how to extend the pmalloc
concept to it:

http://www.openwall.com/lists/kernel-hardening/2018/01/30/20

I'll be AFK intermittently for about 2 weeks, so i might not be able to
reply immediately, but from my perspective this would be just the
beginning of a broader hardening of both kernel and userspace that I'd
like to pursue.

--
igor