Received: by 2002:a25:e74b:0:0:0:0:0 with SMTP id e72csp722992ybh;
        Wed, 22 Jul 2020 11:27:48 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJzn3mploPGUKFoGJEnoFfQANQDdkeIA8e6iggpGHpjZ+9bAyUCZ9fzEbIEdvRXnOpsUISVP
X-Received: by 2002:aa7:dd05:: with SMTP id i5mr720216edv.283.1595442468696;
        Wed, 22 Jul 2020 11:27:48 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1595442468; cv=none;
        d=google.com; s=arc-20160816;
        b=el5OrQM3G/pM4MNOFa/J8+lZaz494/59/ZZnpvxZqzYxVWd2fjn71dSfhU+GVuo4pc
         stpSSP+iifXQXl/j89BDjJEe6/cbmYr74DT3ZRdXLExw5NhxCtcCjqf4qu7fA2tnuxNu
         SNZOFI7QAPdy8tsWIqpbTX6Loq7y8e1vifna2AXCiQYxyngsn7lpE6JGt/7ZY++n0Feb
         h6ywB+dzlWhw2deKk4I+01dKGoxTyiPMHecSW9DqpV4//rGwQ4x0IUR7d/ew/jNNQuRY
         xL0+bMigs4E0i8+5VrlZmJUw9Kh1jSDoAvfZPTE0q9LVtNYwd0nNG2eTs+Ol4r5WCCB6
         VG7Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :user-agent:references:in-reply-to:date:cc:to:from:subject
         :message-id:ironport-sdr:ironport-sdr;
        bh=mXxIa5oYTumVOwO03cDg/1hpmkpaKNByugvTZBfow+A=;
        b=vSF/vgtT7JPd9AzwypaZu6A/8bvzE/5xfuAu6ZW8QJKO7v7Zdf3WjDElChNoqEE1mN
         qEMtqTNSRa4s6d0vujUxG/t/oixUOAv5155lHP4TresMKTdgjKUfhj0a6NN0+YgTnUbx
         677uYnK32CL/wdz+jIyfIulbwvDkaRQbYcnhxmJ9FeosxdC7YM10UoGcpu92Rt35dtOP
         bWizDR4A64ebxhCw82HO1dQNZvs6cwz/DwA1/R5uwO1M8yIJjxss+ySfkmRaxZxY0bf7
         L5KGiSJKLdRTMQDTfq85nCAVIZFVJcQjSyLAbathU127PqrOAm3RuhhIgtfRVyS/M54/
         vByg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id s18si496819edx.6.2020.07.22.11.27.26;
        Wed, 22 Jul 2020 11:27:48 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728299AbgGVSZE (ORCPT <rfc822;noahbdev@gmail.com> + 99 others);
        Wed, 22 Jul 2020 14:25:04 -0400
Received: from mga07.intel.com ([134.134.136.100]:23523 "EHLO mga07.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1726462AbgGVSZE (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 22 Jul 2020 14:25:04 -0400
IronPort-SDR: 0Q8LwTn3V6mJQwhUeF0vHnMOteUFPyhiOq7qYPd5h7WiwiyH+gIkZPvGVoIRJIu8V6FilyvUhX
 w+03zLBuxVow==
X-IronPort-AV: E=McAfee;i="6000,8403,9690"; a="215029140"
X-IronPort-AV: E=Sophos;i="5.75,383,1589266800"; 
   d="scan'208";a="215029140"
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from orsmga003.jf.intel.com ([10.7.209.27])
  by orsmga105.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 22 Jul 2020 11:25:03 -0700
IronPort-SDR: 0aKlQxXbmxsipBjsWOtrkvAy7O06GfhEqxJVOlVaisFefFtYFu31rglF+d2fWnFGv7uefTvaVh
 x0s8xDK0OrAA==
X-IronPort-AV: E=Sophos;i="5.75,383,1589266800"; 
   d="scan'208";a="284311422"
Received: from kcaccard-mobl.amr.corp.intel.com (HELO kcaccard-mobl1.jf.intel.com) ([10.212.14.158])
  by orsmga003-auth.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 22 Jul 2020 11:24:59 -0700
Message-ID: <24fedc0f503527ef847a4f534277856388fb6a6a.camel@linux.intel.com>
Subject: Re: [PATCH v4 00/10] Function Granular KASLR
From:   Kristen Carlson Accardi <kristen@linux.intel.com>
To:     Joe Lawrence <joe.lawrence@redhat.com>,
        Kees Cook <keescook@chromium.org>,
        Miroslav Benes <mbenes@suse.cz>
Cc:     tglx@linutronix.de, mingo@redhat.com, bp@alien8.de,
        arjan@linux.intel.com, x86@kernel.org,
        linux-kernel@vger.kernel.org, kernel-hardening@lists.openwall.com,
        rick.p.edgecombe@intel.com, live-patching@vger.kernel.org
Date:   Wed, 22 Jul 2020 11:24:46 -0700
In-Reply-To: <b5bc7a92-a11e-d75d-eefb-fc640c87490d@redhat.com>
References: <20200717170008.5949-1-kristen@linux.intel.com>
         <alpine.LSU.2.21.2007221122110.10163@pobox.suse.cz>
         <202007220738.72F26D2480@keescook>
         <aa51eb26-e2a9-c448-a3b8-e9e68deeb468@redhat.com>
         <b5bc7a92-a11e-d75d-eefb-fc640c87490d@redhat.com>
Content-Type: text/plain; charset="UTF-8"
User-Agent: Evolution 3.30.5 (3.30.5-1.fc29) 
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, 2020-07-22 at 10:56 -0400, Joe Lawrence wrote:
> On 7/22/20 10:51 AM, Joe Lawrence wrote:
> > On 7/22/20 10:39 AM, Kees Cook wrote:
> > > On Wed, Jul 22, 2020 at 11:27:30AM +0200, Miroslav Benes wrote:
> > > > Let me CC live-patching ML, because from a quick glance this is
> > > > something
> > > > which could impact live patching code. At least it invalidates
> > > > assumptions
> > > > which "sympos" is based on.
> > > 
> > > In a quick skim, it looks like the symbol resolution is using
> > > kallsyms_on_each_symbol(), so I think this is safe? What's a good
> > > selftest for live-patching?
> > > 
> > 
> > Hi Kees,
> > 
> > I don't think any of the in-tree tests currently exercise the
> > kallsyms/sympos end of livepatching.
> > 
> 
> On second thought, I mispoke.. The general livepatch code does use
> it:
> 
> klp_init_object
>    klp_init_object_loaded
>      klp_find_object_symbol
> 
> in which case any of the current kselftests should exercise that.
> 
>    % make -C tools/testing/selftests/livepatch run_tests
> 
> -- Joe
> 

Thanks, it looks like this should work for helping me exercise the live
patch code paths. I will take a look and get back to you all.