Received: by 10.192.165.156 with SMTP id m28csp222010imm; Tue, 10 Apr 2018 20:17:37 -0700 (PDT) X-Google-Smtp-Source: AIpwx4+R+yWJanL7Vo0Zpir6L529laicCFOST8jCyIwMDsnTCv1v8x07jcBSlozmhvonW+ID3KKF X-Received: by 10.98.220.218 with SMTP id c87mr2524340pfl.198.1523416657631; Tue, 10 Apr 2018 20:17:37 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1523416657; cv=none; d=google.com; s=arc-20160816; b=DAg+ApdllDdlSp+DE4LWcubPcoE2ttX3TxlxKnKbO49Vsw4GUEEUbhsxURlZvwYIJO Nt47SwSVpvgrigEGh7vEbuuiOOi1VKCr/jsH+BNCCzZxce1uPYETQrBL8/lhzmryHMdC W9pHro6HBcHmpV5IHGC4DkorHvIOQ5h/k+cDPvsPH99yKcUcskHyZ8Nke0o2xCDIQBwJ XYmoXfSPQwZ+ZlKyGYqkJ/Gpf11kkvWghxcYns1cNxyWSnL74TjYIAWuBa0+yBOTC1DE whUeGYySHClvAe5NcParUz9sXxfWiU0tggig/Hp+sh0AmNBBWmsDAr/po0vsScGjIw+u kibA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature:dkim-signature :arc-authentication-results; bh=CTu32i7PEwT3HGCjnnRbPl7ndwMaIX7ighmwCtaZdew=; b=Frbz8qgC2yjuH/E11tlT6odKA2hFxG1+NvTQxaxxaCLtuaggh2a5PBs3gpoFfTqF96 6jbg3aMfXB5SsOguu65ARuOKKVY/ZJWbnTX6HSFq8pit7rmpBFKYw1gXhS5Tzo9ouCLx 4JlXZSfafYp9p+OjadHKctMbrQeNK1Mv6NSNHbNZ+76lceQZ7MuZ4b413WnKHWfmieOp parrrfXHObEKSv0ytDqh5CP3io1F+ZFV4AA32/x5fjJ88jH2LZKQPHVlN57GjLLWHy2A dUcXt2acdIdC/yZcHDIxjodA/1dUNnDhMiXCu1Ilz7VAoeVUJysPTK0qtf3xIY0MFFno VC7Q== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@google.com header.s=20161025 header.b=c/NfRmKs; dkim=fail header.i=@chromium.org header.s=google header.b=EYHxW7Ob; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id z62si137064pfb.305.2018.04.10.20.17.00; Tue, 10 Apr 2018 20:17:37 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=fail header.i=@google.com header.s=20161025 header.b=c/NfRmKs; dkim=fail header.i=@chromium.org header.s=google header.b=EYHxW7Ob; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752788AbeDKDNI (ORCPT + 99 others); Tue, 10 Apr 2018 23:13:08 -0400 Received: from mail-ua0-f173.google.com ([209.85.217.173]:38129 "EHLO mail-ua0-f173.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752381AbeDKDNE (ORCPT ); Tue, 10 Apr 2018 23:13:04 -0400 Received: by mail-ua0-f173.google.com with SMTP id q38so236696uad.5 for ; Tue, 10 Apr 2018 20:13:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=CTu32i7PEwT3HGCjnnRbPl7ndwMaIX7ighmwCtaZdew=; b=c/NfRmKsv2aF2gbcE8kr6SdBqngejWG/mugpFP7RIVdEFiemohYr7yXo04x+wVTAQi tIpD61THJQojmyqzoai9jLLEzA19KC7fDVybo0KjvvjxtzoUn1zl/R0cjQvUUCnpzw7V FZC2BAQal7hDhbEjvlQq3W9oL3yzujen3KSGQl7u08DYvC1L5ZLkjLvFRDO0mWWt4S3p TZpPD0eIxO3PVq4wfoyS1iw4yzEXgKiQPuI3UoJwIjedTuygzJHPoTJdmkiSQzhkxTjv QPbdX4rVDcSZcWGIox9MwptWxh+qFHWEv4jvOLy+vL4UBVH25CtQJAryYWk7C0UhUfEm 2bfQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=CTu32i7PEwT3HGCjnnRbPl7ndwMaIX7ighmwCtaZdew=; b=EYHxW7ObS95TXrpjicbo2+XwKqdlGjqMLi7HJ1cWksMpvVFGNOHmOfAU+tYqqn/XMn I607pjFyF+Jk1MQd+CRVbijkSliqATI9UBTa8DT6JBAeCyl6IDvUaWAh9Rq78O3hGLEo TnSTRaUr5IAqNqoKnqcBbs2azDJPH8LexoxDk= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=CTu32i7PEwT3HGCjnnRbPl7ndwMaIX7ighmwCtaZdew=; b=Qy0DrVzxqeKOLweO7pJ5eNsQYi3JBT2J0lAmh/Li8mtRizTTo5GDJX5dwDsTTSkDrY uu4b/Wb8a690kT/lrH0imnGWDvBVzJMuUkHspYW810N5/natKFRG3JFOBz5MAV4axMl7 hD84QMqi+x1W5TDUqXVCV0nyAicppAJGmZluQrFWaU793hM99mLHgtMrzlihTqUvvlmL 4+0g5UoES+UH4uksZSFEGeZtGJ7KRg1ku1hwE8PTOJcJXf53Z/ioo7gz0DFvbBbamjTz UkRs7Bfr8rltNxL1244+slse9jBZ+9ilTmJtWwGxUySLtwKThTYAcSc/rld1tGk3rQJm qH8w== X-Gm-Message-State: ALQs6tBLu3IK0N8veqT6yD2gtiGuldDMNwPifhLcLKYCmJ0c3RUX9hkl rdgWrNum/XFzyMJocmvbWYOPzTKxd+oRTgQ9rYnPYg== X-Received: by 10.176.71.214 with SMTP id w22mr2230182uac.74.1523416383184; Tue, 10 Apr 2018 20:13:03 -0700 (PDT) MIME-Version: 1.0 Received: by 10.31.164.81 with HTTP; Tue, 10 Apr 2018 20:13:01 -0700 (PDT) In-Reply-To: References: <10360653.ov98egbaqx@natalenko.name> <2679696.GDoj5zcZOu@natalenko.name> <51a7e805058ef7f35b226cbbf0ccc4ff@natalenko.name> <3d7b5a707e216e19eb3defe0586bfbc8@natalenko.name> From: Kees Cook Date: Tue, 10 Apr 2018 20:13:01 -0700 X-Google-Sender-Auth: -M69JQPBOI3UBWF38FBiI4hiQVE Message-ID: Subject: Re: usercopy whitelist woe in scsi_sense_cache To: Oleksandr Natalenko Cc: David Windsor , "James E.J. Bottomley" , "Martin K. Petersen" , linux-scsi@vger.kernel.org, LKML , Christoph Hellwig , Jens Axboe , Hannes Reinecke , Johannes Thumshirn , linux-block@vger.kernel.org, paolo.valente@linaro.org Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Apr 10, 2018 at 10:16 AM, Oleksandr Natalenko wrote: > Hi, Kees, Paolo et al. > > 10.04.2018 08:53, Kees Cook wrote: >> >> Unfortunately I only had a single hang with no dumps. I haven't been >> able to reproduce it since. :( > > > For your convenience I've prepared a VM that contains a reproducer. Awesome. :) > Under the /root folder there is a reproducer script (reproducer.sh). It does > trivial things like enabling sysrq, opening LUKS device, mounting a volume, > running a background I/O (this is an important part, actually, since I > wasn't able to trigger the issue without the background I/O) and, finally, > running the smartctl in a loop. If you are lucky, within a minute or two > you'll get the first warning followed shortly by subsequent bugs and I/O > stall (htop is pre-installed for your convenience too). Yup! [ 27.729498] Bad or missing usercopy whitelist? Kernel memory exposure attempt detected from SLUB object 'scsi_sense_cache' (offset 76, size 22)! I'll see about booting with my own kernels, etc, and try to narrow this down. :) -Kees -- Kees Cook Pixel Security