Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp2097840yba; Fri, 19 Apr 2019 12:05:02 -0700 (PDT) X-Google-Smtp-Source: APXvYqzHyBmDVa99Z4W2QopZNtRp2IJ0AIy7+aUxgt58JckpcNKHhav8nIRQ4cP5VpI3FGpS9V08 X-Received: by 2002:a62:14c3:: with SMTP id 186mr5652867pfu.21.1555700702576; Fri, 19 Apr 2019 12:05:02 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1555700702; cv=none; d=google.com; s=arc-20160816; b=zNO/HZ9pT7L0P0AojtPSvkQBcagiU1XeW766+rXNlLXkjaohhyWgBPkAx1S6UpbHPV k752Il8CAOcdlKh0gCMB2mDda46fa2hZ4BTYzgxV8OOZUg6enWIh82gKF3QbopIgh5hV Hq83S7wRUwwTDAfauuoXWTFnTKL0U2JxH/7WyO8ei5+waSVtgyuqfuq/LLjHlita8c9E D0WODNC2sGa3076CJa9r2v1ZSmNqEouf7v/pg4P+tWYvXz3p5kyNdwkt/q1F/oagyrKM uDfQMMjOQp39F1XHq2owGA0MRlSUq0FG1CXuCKxaIv1KwydBPdN0+6a3DmJe+37wi0d8 /dcA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=2j6bVI38nNnTFEsqpyh4i9/0AM+zS7jKtH/c4TEI0Bg=; b=qsyHoZSrCkdJ9WIe8UCt5IW98YJIa4NueO0qk92qtAUoLksST8bHaliWJMYtW2uQSI Yf9VA1hKOyRaMN1iWtOIhBBAnmNL1nWn1UY+O/3HPwTVyA4b+Bxh6/rhicJG/gdVF6Qp xwj2ageu7W0BI3FbfHL01U72BXqBN69cEuSo72+8j+tMmQDlMVXrKGMSF/jVCX4v09kK SiPH7/wNHm3Ynd+a9C55RhpKbsD8sPl+bsdRRtis+FuemFfFmxuQa4A1I0ltNc8R7bGq ZbzaiahzR3EOju5Ku1H+YgwclvuNAFkArco3y95Y9UaXrnojEKlxWnFjFb+9jalX+I+h no+Q== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=fQfWncG3; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id cu15si6174073plb.83.2019.04.19.12.04.47; Fri, 19 Apr 2019 12:05:02 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=fQfWncG3; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1729008AbfDSTDN (ORCPT + 99 others); Fri, 19 Apr 2019 15:03:13 -0400 Received: from mail-ua1-f67.google.com ([209.85.222.67]:36820 "EHLO mail-ua1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726417AbfDSTDL (ORCPT ); Fri, 19 Apr 2019 15:03:11 -0400 Received: by mail-ua1-f67.google.com with SMTP id k32so2012812uae.3 for ; Fri, 19 Apr 2019 12:03:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=2j6bVI38nNnTFEsqpyh4i9/0AM+zS7jKtH/c4TEI0Bg=; b=fQfWncG3BLeLhGQljJXzFWY5nf+JkAYl/1kkTSYcQxQe0OaZn9X11Ce9h+kI6ZDXYD YJ4VMn2zRM7w+KYczXWlS4ubFMdb27WaLsD8FgcdHtMoqHulDVGrnd1V53yO1jFB3A8L PeODq1AOm93Y+U8Rfr5sRFt2pQOCkrTCHXxD4= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=2j6bVI38nNnTFEsqpyh4i9/0AM+zS7jKtH/c4TEI0Bg=; b=laDT52qvMdDEwo49bJGXO7nmr/a/YAqSJK2mbfbVaocDyWRtAdSVpjvAPwryPeRXy2 /aY+bPJwiYyH5II2PmrzaymolLGAPj1mDfNf30A1awl4fR9FmjpbSSC/jB9qhgxGaVqu dQ3T9juzKQ/74EQNibhDtyhMGudbcDO3nL3B0usoTCH639TihFkwEQB5dqa+mec5rvAG 2MCuAjgsdNxhOZGvz4hj7XZCITYFfLC/adYqXVaXRjHrjVyL4lVWsZHLsRSwS/EXltkk 8D7cwniCy06B+RFVNFiYmI1rx+h4DFtmfL+kzzg9Q19Sv/8ogS4Ja6v/oOHQz1idXD68 zuGw== X-Gm-Message-State: APjAAAW84p0tXL2yLpbFXnsytHqES5J197BoUZyS1HJx+ikOiVXDbbub TM6WQWHtVJLbATEfSSvwgT/vTw8pfUQ= X-Received: by 2002:ab0:2399:: with SMTP id b25mr2275923uan.129.1555686326767; Fri, 19 Apr 2019 08:05:26 -0700 (PDT) Received: from mail-ua1-f48.google.com (mail-ua1-f48.google.com. [209.85.222.48]) by smtp.gmail.com with ESMTPSA id 2sm5702667vke.27.2019.04.19.08.05.26 for (version=TLS1_3 cipher=AEAD-AES128-GCM-SHA256 bits=128/128); Fri, 19 Apr 2019 08:05:26 -0700 (PDT) Received: by mail-ua1-f48.google.com with SMTP id p13so1831210uaa.11 for ; Fri, 19 Apr 2019 08:05:26 -0700 (PDT) X-Received: by 2002:ab0:1646:: with SMTP id l6mr2231986uae.75.1555686023710; Fri, 19 Apr 2019 08:00:23 -0700 (PDT) MIME-Version: 1.0 References: <20190312173248.13490-1-alisaidi@amazon.com> <20190312173248.13490-3-alisaidi@amazon.com> <34381CFC-A90F-4979-9802-2BA0E6539C68@amazon.com> <20190419085140.GA50390@gmail.com> In-Reply-To: <20190419085140.GA50390@gmail.com> From: Kees Cook Date: Fri, 19 Apr 2019 10:00:12 -0500 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [PATCH 2/2] x86/mmap: handle worst-case heap randomization in mmap_base To: Ingo Molnar Cc: "Saidi, Ali" , Kees Cook , Michal Hocko , Matthew Wilcox , Jann Horn , Dave Hansen , "Liguori, Anthony" , Peter Zijlstra , Catalin Marinas , X86 ML , Will Deacon , LKML , Ingo Molnar , Borislav Petkov , "Woodhouse, David" , Andy Lutomirski , "H. Peter Anvin" , Andrew Morton , Thomas Gleixner , linux-arm-kernel Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Apr 19, 2019 at 3:51 AM Ingo Molnar wrote: > I'd suggest incorporating all feedback and sending a v2 series - it's > much easier to get people's attention via code submitted. ;-) I sent my patch out, akpm added it to -mm and then xtensa broke, and it got removed. Soooo... I'm looking at it again now. I think I might combine the ideas and in the interpreter case bump the entire mmap base by the brk randomization size. That should make things less strange and solve the corner case without reducing available address space in the general case. -- Kees Cook