Received: by 2002:ac0:a5b6:0:0:0:0:0 with SMTP id m51-v6csp3553325imm; Tue, 29 May 2018 09:08:53 -0700 (PDT) X-Google-Smtp-Source: AB8JxZrf+pQHcoqO5cS0Wb1dNHya5K6XMVFnmRDQhJ7hl2eze65u+MKYiY7qbyukU2F6r2H7y5Ic X-Received: by 2002:a63:9843:: with SMTP id l3-v6mr14568613pgo.208.1527610133892; Tue, 29 May 2018 09:08:53 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1527610133; cv=none; d=google.com; s=arc-20160816; b=Q3LB/SViNsYLrh6U3TRr8hH6tTjZ2GzYt3oY0HyK/VvFlic4EGaa0wusqWTptFEIUR CdXb5vS8Qw5RsMOXwbdeFSTJg/pVdHHBs1J6j4ZAVufDynFdQJ2s+k9BbxJqVZB5wUon i62YEVRilsxtvkCtI9/KIFVCnbQt9IFoDWbLkVDCWuVrIik6g3tMGpZAXfoL0EVq36bk acnBSJJqX+JSOZvpdxUNFAm49rApCDYASQPT6vNjHZeqCvVbEuJ7uUdiJTxsMVTNI6rf JN3FD3v9O3yDC8RvyAX1cSMGKGWiqIn4EskKlcQjOqvqNdY5RzKhVfoc6BK/SuPHNwL6 /9YA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:mail-followup-to :message-id:subject:cc:to:from:date:dkim-signature :arc-authentication-results; bh=HCXm6WvLudIs4IDCMVt70U82b69/xM93GOigKyKrTLg=; b=guMwuSWRTiUVcsePdj8VkCQrFjctr+XqLV0ictQ4RQcVKsFlqakEnnktKD0kOgOvi4 WJEC9mkY49LZ8/AQiDt+4QGKWgUFSaVCOTfh43OzBekGbsH5+V8+GwF9vWriqthY3ePr 61S1tbbNES8c0uQs0JT89qcO2riW+02EMSIBlBodLqlu6r1JKBIcJwiR50mIm4P+uNKt ZAUy5HMGhRBx71VynPR/KYng2MMi2z5UjC6GTBc1pH5wGRR2ba7P8HeV1YgZRXv8AxhN /Tc3Nx961HZ9M/277WOij97/ruvwcXKxxFWx055nw2TGz0q00pBQqWtsz4l7UTnkViKB SP6w== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@thunk.org header.s=ef5046eb header.b=dnx7SzLQ; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id o61-v6si10339344pld.109.2018.05.29.09.08.39; Tue, 29 May 2018 09:08:53 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=fail header.i=@thunk.org header.s=ef5046eb header.b=dnx7SzLQ; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S965054AbeE2QH4 (ORCPT + 99 others); Tue, 29 May 2018 12:07:56 -0400 Received: from imap.thunk.org ([74.207.234.97]:40928 "EHLO imap.thunk.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S934877AbeE2QHy (ORCPT ); Tue, 29 May 2018 12:07:54 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=thunk.org; s=ef5046eb; h=In-Reply-To:Content-Type:MIME-Version:References:Message-ID: Subject:Cc:To:From:Date:Sender:Reply-To:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=HCXm6WvLudIs4IDCMVt70U82b69/xM93GOigKyKrTLg=; b=dnx7SzLQXnhNZGmZrTC8WJ/zxH VDYcmkVGG5UJiIfdjw62F+aYpXVGMrXMSubOzV5Dx0hSmvVew5O5YGFOC+BpaTKBaSusi8ibOmdlH jOxAOJEq/K7vAI548uXd7IXMgLG45zqUHe63/dUezG5+27JMYOgYdvrYh3Gl5sT6hzjU=; Received: from root (helo=callcc.thunk.org) by imap.thunk.org with local-esmtp (Exim 4.89) (envelope-from ) id 1fNhA0-0002os-L7; Tue, 29 May 2018 16:07:44 +0000 Received: by callcc.thunk.org (Postfix, from userid 15806) id D7F237A60AC; Tue, 29 May 2018 12:07:43 -0400 (EDT) Date: Tue, 29 May 2018 12:07:43 -0400 From: "Theodore Y. Ts'o" To: Prarit Bhargava Cc: Kees Cook , LKML , Thomas Gleixner , Ingo Molnar , "H. Peter Anvin" , X86 ML , Arnd Bergmann , Greg Kroah-Hartman , Rik van Riel , Andrew Morton , Philippe Ombredanne , "Jason A. Donenfeld" , Kate Stewart Subject: Re: [PATCH] x86, random: Fix get_random_bytes() warning in x86 start_kernel Message-ID: <20180529160743.GA7381@thunk.org> Mail-Followup-To: "Theodore Y. Ts'o" , Prarit Bhargava , Kees Cook , LKML , Thomas Gleixner , Ingo Molnar , "H. Peter Anvin" , X86 ML , Arnd Bergmann , Greg Kroah-Hartman , Rik van Riel , Andrew Morton , Philippe Ombredanne , "Jason A. Donenfeld" , Kate Stewart References: <20180529123800.19627-1-prarit@redhat.com> <71b5df93-2e21-f3c3-fa22-4488729daeb5@redhat.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <71b5df93-2e21-f3c3-fa22-4488729daeb5@redhat.com> User-Agent: Mutt/1.10.0 (2018-05-17) X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: tytso@thunk.org X-SA-Exim-Scanned: No (on imap.thunk.org); SAEximRunCond expanded to false Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, May 29, 2018 at 11:01:07AM -0400, Prarit Bhargava wrote: > Kees, in early boot no pool is available so the stack canary is initialized from > the TSC. Later in boot, the stack canary will use the the crng. > > ie) in early boot only TSC is okay, and late boot (when crng_ready() is true) > the pool will be used. But that means all of the kernel threads (e.g., workqueues, et. al) would not be well protected by the stack canary. That seems.... rather unfortunate. - Ted