Received: by 2002:a25:ca44:0:0:0:0:0 with SMTP id a65csp209513ybg; Tue, 28 Jul 2020 04:06:25 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxgV5IvvJQOiqYM/2rJ2VDGLB/RYdUbPxcGbeZKRZFpfM2NhlxzNpGq6SUTxTFC3+PFqfNx X-Received: by 2002:aa7:c54e:: with SMTP id s14mr25939655edr.81.1595934384846; Tue, 28 Jul 2020 04:06:24 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1595934384; cv=none; d=google.com; s=arc-20160816; b=NxQ8Mr4O3IFBEQwLuATDyfCUT9sMqHaaX0mwASMPy8Eodrew6qmY3X5iUMyOh2XL2e N4DWXoKyH9PxUR0MqtC5vYRJiycwR26F8f+tmfdoexKEwVM38lFNtIzbA++pTt95lQCP 0PPtmj/3TMIE/es3F/XT0a5rtc+GeeAhDbzbiB71m3PLB3lYCAhBNaverJvtzGuFgarY Pgz/j9HX0jdfVzdnuEUTt1HIke5M0GGr1sVQBrw7jHOs+mN1eeytX7igh01923nQmhZR VVNokZO6mo84MtnN9K6K52Os89+WP9nBKHjlpwn9qkvmG1xiwhHJ0pzBLxG+tudjM7dJ uulw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=Dw0z9VojMXDd+usc3/YWXmz8Q9Ojt2ZYhsw0p0MAypE=; b=u0npxWEjG8B/60zzLCcN8NeIxPiROUDc3cy3/DeS6LFfYC3Tez1E+9YzCKY5HpA6Qu GyNOEqoJ0TSCBlv0g3JRV511tFgsEkuJwGdhpW/Ss05Aka5nESkrO8t4wNfOVmUosMot mpJ+LU1IXgdyKrSDoy0NQVsP01mcnBtcRPh4gDQxXoSX9CaG3ArTvhN1vNRByj5owe/K 3hGyB+ZS8ifVO10e3yXx2h5Lfo3fq/YBxvl5fse1S/pei6JtEpHHtp8IAhvyj7Dgwt2g 4qUVKvZ4oypdR7wS4UPH+U8hWwzx/Rhl55s3WG4Gj8zZWsijIOCe3lDTB/PfNBbV3X7m PS+w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=ZVv5HUnM; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id v10si7002744ejg.203.2020.07.28.04.06.02; Tue, 28 Jul 2020 04:06:24 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=ZVv5HUnM; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728914AbgG1LEi (ORCPT + 99 others); Tue, 28 Jul 2020 07:04:38 -0400 Received: from mail.kernel.org ([198.145.29.99]:37200 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1728806AbgG1LEi (ORCPT ); Tue, 28 Jul 2020 07:04:38 -0400 Received: from disco-boy.misterjones.org (disco-boy.misterjones.org [51.254.78.96]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 9A570204EA; Tue, 28 Jul 2020 11:04:37 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1595934277; bh=DgU4yKbmp8OwurHB5DLCGWi9A01qQNe/KIyrPlNU668=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=ZVv5HUnMOVp2vHnZ9/jtVS2y/XyBACUo9eSxXbsVecuIY/cF0jYniuWzpdyF237jW bM6z0VJwVTsJBMSyi4czmL0gVP2+4XvXlcYnaRF2dC0KH1ocPws2APpXg/68W+2rE9 DZ84dmgv9dkZZJLwx+eHIxFkWz332B+nJWqx/PVc= Received: from 78.163-31-62.static.virginmediabusiness.co.uk ([62.31.163.78] helo=why.lan) by disco-boy.misterjones.org with esmtpsa (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1k0NPQ-00FczY-4W; Tue, 28 Jul 2020 12:04:36 +0100 From: Marc Zyngier To: Will Deacon , Julien Thierry , Suzuki K Poulose , James Morse , David Brazdil , Catalin Marinas Cc: android-kvm@google.com, linux-kernel@vger.kernel.org, kvmarm@lists.cs.columbia.edu, kernel-team@android.com, linux-arm-kernel@lists.infradead.org Subject: Re: [PATCH 0/2] Unify non-VHE ASLR features behind CONFIG_RANDOMIZE_BASE Date: Tue, 28 Jul 2020 12:04:31 +0100 Message-Id: <159593423897.3960510.2442620106516348363.b4-ty@kernel.org> X-Mailer: git-send-email 2.27.0 In-Reply-To: <20200721094445.82184-1-dbrazdil@google.com> References: <20200721094445.82184-1-dbrazdil@google.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-SA-Exim-Connect-IP: 62.31.163.78 X-SA-Exim-Rcpt-To: will@kernel.org, julien.thierry.kdev@gmail.com, suzuki.poulose@arm.com, james.morse@arm.com, dbrazdil@google.com, catalin.marinas@arm.com, android-kvm@google.com, linux-kernel@vger.kernel.org, kvmarm@lists.cs.columbia.edu, kernel-team@android.com, linux-arm-kernel@lists.infradead.org X-SA-Exim-Mail-From: maz@kernel.org X-SA-Exim-Scanned: No (on disco-boy.misterjones.org); SAEximRunCond expanded to false Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, 21 Jul 2020 10:44:43 +0100, David Brazdil wrote: > There is currently no way to disable nVHE ASLR, e.g. for debugging, so the > first patch in this series makes it conditional on RANDOMIZE_BASE, same as > KASLR. Note that the 'nokaslr' command line flag has no effect here. > > Second patch unifies the HARDEN_EL2_VECTORS errate for A57 and A72 behind > the same Kconfig for simplicity. Happy to make it just depend on > RANDOMIZE_BASE if having an option to keep randomization on but hardenning > off is preferred. > > [...] Applied to kvm-arm64/misc-5.9, thanks! [1/2] KVM: arm64: Make nVHE ASLR conditional on RANDOMIZE_BASE commit: 24f69c0fa4e252f706884114b7d6353aa07678b5 [2/2] KVM: arm64: Substitute RANDOMIZE_BASE for HARDEN_EL2_VECTORS commit: a59a2edbbba7397fede86e40a3da17e5beebf98b Cheers, M. -- Without deviation from the norm, progress is not possible.