Received: by 2002:ab2:687:0:b0:1f4:6588:b3a7 with SMTP id s7csp107420lqe; Tue, 9 Apr 2024 16:38:19 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCWm4nmyRH9FFVahRHb0xB0atd2HvydTllcqXwlpcKAWbh1AOZUdqK/eDkqZrdAAW9obJTYlcVHq2ouvXFVSf1hmaMYiOeN2s1RmrxnPDQ== X-Google-Smtp-Source: AGHT+IHxG25TCAg5qG5DBneH8E7716MzKdgOksJlfJ8AZh1oIjg4FhlEARKeQpbYvlJLJ3e8LUUb X-Received: by 2002:a05:6359:4f8b:b0:186:249a:c8de with SMTP id nh11-20020a0563594f8b00b00186249ac8demr1432172rwb.5.1712705898823; Tue, 09 Apr 2024 16:38:18 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1712705898; cv=pass; d=google.com; s=arc-20160816; b=Gn9utXya0NULikoX9m9eyAzghcQxvYZjWezf7iziDUxHgmP8vnnEURDhhay4XLbzGg /erTlvO+WKSh12Sq87xgjjLEYmXdZKyfMT/Xlipw2/dJgYdpCHb7W6hqvJ2BM5Fd+FqW WBRD0XXwOEsdVq3uZHYyiArPI1e/6B6GJKJU2G/47A/Tk5KQZaXOirSXA5etryG4kMG4 pl6MoUIkwdxpt2fkynDCZiw+/VALuWi1GTrdVYt5E27fCCNuQaQmFuDVV9F/S2yDgmNS WfXq5wPXndd/RFrUcRsNLJlyICmzOOaAHJf2/yvRR7JlwTYIirgzXiTnmwtTNaOpfyDH K4FA== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:content-disposition:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:references:message-id:subject:cc :to:from:date:dkim-signature; bh=R3GBllj8XS/Lgw7EDpDRRfiZJH4dQ/8JO1yJUn0SBBo=; fh=7sya7O0H+irGvU6KRSp1xyDStSCzkiT8WLTtkdfcJx4=; b=NHYEYgmNFsNqmyC59+9rvtSFUFdbnVmy2oTi/yoOmbOq5GUjYg9l6TZ/X4fHVWg3Sk XpnwNIVWmmSoIRtY2DOzLsyQBI7FfUiFVAjMThmofvvVtBSRN5bP1PTjUVRzU9ufAJ2/ V1QH5eMuztEYsAWq/fK4l6cSsISTepdC7M4ypXT6MTzrKpm7uJoR3kPeMXNs8TfdAHro 9rFmgYBW7v9GnOPoyq0J8ObxnAOQihQpoSo1u9+Zw5titP377yM3mzqP3G9ji1HnALU7 usJ0iZTAZuG87eh7fLJ0DBgRDAIMbBo8KBaqkely0Xyme+7BcgSM2QL1b+ddf1lkzpeY qnoA==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=ZJ+RrgOK; arc=pass (i=1 spf=pass spfdomain=chromium.org dkim=pass dkdomain=chromium.org dmarc=pass fromdomain=chromium.org); spf=pass (google.com: domain of linux-kernel+bounces-137701-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:40f1:3f00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-137701-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from sy.mirrors.kernel.org (sy.mirrors.kernel.org. [2604:1380:40f1:3f00::1]) by mx.google.com with ESMTPS id n1-20020a63ee41000000b005dc67975e49si9534574pgk.897.2024.04.09.16.38.18 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 09 Apr 2024 16:38:18 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-137701-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:40f1:3f00::1 as permitted sender) client-ip=2604:1380:40f1:3f00::1; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=ZJ+RrgOK; arc=pass (i=1 spf=pass spfdomain=chromium.org dkim=pass dkdomain=chromium.org dmarc=pass fromdomain=chromium.org); spf=pass (google.com: domain of linux-kernel+bounces-137701-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:40f1:3f00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-137701-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sy.mirrors.kernel.org (Postfix) with ESMTPS id AE66DB22901 for ; Tue, 9 Apr 2024 23:37:22 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 71D1F158DDE; Tue, 9 Apr 2024 23:37:14 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org header.b="ZJ+RrgOK" Received: from mail-pl1-f181.google.com (mail-pl1-f181.google.com [209.85.214.181]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 1EE05158DCD for ; Tue, 9 Apr 2024 23:37:11 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.214.181 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1712705833; cv=none; b=aRG+GMVWSZ/5ZpuLTFG6Zm9oXi8KLtYOTXGd/wC6tqd7uVUsuifIw2QNsjbMVlrPPPQSe8HnY1DqFLueS8SkgVmFOAIJJG59Rivk2C5n4Bf+oRMpeFF4I5avpbSY+wd9xmDmQSKGK5IpRz0iQL+J60PTTvtDdtuO6goy+5IRskc= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1712705833; c=relaxed/simple; bh=5IWHRqqI3seHjc0H8avvGZOeJtWf+yYAE01YKdMRMjI=; h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version: Content-Type:Content-Disposition:In-Reply-To; b=i/hVCPJzxP6uheOKu8cU6Og6ODf/VvGGzdLqytiO5DbOG6aZbgJpV+Welr3FGAsxyBrE5lt9LnHVL2OT5DZMkIjlKmrI7teQpG1pEJ5sOOvbi1JDGm5QYYJ5On9S8cSjhQ8uHbaCXPuvVbANLCD/d/sxYUTAKgCfnRNpG9IufOE= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=chromium.org; spf=pass smtp.mailfrom=chromium.org; dkim=pass (1024-bit key) header.d=chromium.org header.i=@chromium.org header.b=ZJ+RrgOK; arc=none smtp.client-ip=209.85.214.181 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=chromium.org Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=chromium.org Received: by mail-pl1-f181.google.com with SMTP id d9443c01a7336-1e2232e30f4so54535015ad.2 for ; Tue, 09 Apr 2024 16:37:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; t=1712705831; x=1713310631; darn=vger.kernel.org; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:from:to:cc:subject:date:message-id:reply-to; bh=R3GBllj8XS/Lgw7EDpDRRfiZJH4dQ/8JO1yJUn0SBBo=; b=ZJ+RrgOKjpOz9xlBHcWvU73KNORXrOrMjwh4nPUz3JCkOgWGnPN88mBWsC7QFTCz2h JDa2g/M33Sx1YvD0C9qx/TOVi5dSKjxD0QfJKrKazgY/j0LEkJKwggviFDiWxOJK1vjt dQe0ZoRzVidNxlDGSZGCMBHEO3gs9g2yfNgH0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712705831; x=1713310631; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=R3GBllj8XS/Lgw7EDpDRRfiZJH4dQ/8JO1yJUn0SBBo=; b=RZquEatVEfc3Sp4cUV2Vh5GjxVh9WDOr27qYm9qw1LZ8iUVqTtwAv+CZw8jGJ2lhqs zLNdPnUhNMDUdt05B7HK5Z9xHoqUHK31T4RTPXgNHWaZuAMHlNQOoPiXCkid4EewtDJV fivmQWcjqC7Lf56eD8iESMMNf3vRGmO5FSxuCr4cCBwsQGCmA4unHGjmz0cqCtB9+9Az t1lWUH62w3ZjPTDO6DPBbIcTJgvntAKIc/FRAqKOeM1641vlXwo8FLlNkP6s+5QWGsn4 BaW49LbQoE8GqJaELMlCy24IWw55sHMWE1slsG5fhUBE3bG/q4w6Qycwv1drQI/GiiNE qmEA== X-Forwarded-Encrypted: i=1; AJvYcCV0dmHLPnnT+NeNvbF455i0xG8JhPZWSyRpvb+v5c2Tujzz8EHUGm2BTPMZl4OH5gNdcNC0YJMMOO0E3EqiIG7z8iHh5WoB5TV8XU5j X-Gm-Message-State: AOJu0YwCjyuygKz3bRVtpL0YWJfUstWC4WZWxmDnyNZ+uvCArsstceTD A5Mku6Ajiyw0MfLCDidlhgJCP6yDDwckgQypq3QjU2bwsDko1cEcVZw3DzvQtA== X-Received: by 2002:a17:902:9303:b0:1e0:a3dd:82df with SMTP id bc3-20020a170902930300b001e0a3dd82dfmr1075461plb.38.1712705831382; Tue, 09 Apr 2024 16:37:11 -0700 (PDT) Received: from www.outflux.net ([198.0.35.241]) by smtp.gmail.com with ESMTPSA id kn12-20020a170903078c00b001e0c91d448fsm9479230plb.112.2024.04.09.16.37.10 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 09 Apr 2024 16:37:10 -0700 (PDT) Date: Tue, 9 Apr 2024 16:37:10 -0700 From: Kees Cook To: "Luck, Tony" Cc: Steven Rostedt , "linux-kernel@vger.kernel.org" , "linux-trace-kernel@vger.kernel.org" , Masami Hiramatsu , Mark Rutland , Mathieu Desnoyers , Andrew Morton , "Liam R. Howlett" , Vlastimil Babka , Lorenzo Stoakes , "linux-mm@kvack.org" , Thomas Gleixner , Ingo Molnar , Borislav Petkov , Dave Hansen , "x86@kernel.org" , "H. Peter Anvin" , Peter Zijlstra , "Guilherme G. Piccoli" , "linux-hardening@vger.kernel.org" , Guenter Roeck , Ross Zwisler , "wklin@google.com" , Vineeth Remanan Pillai , Joel Fernandes , Suleiman Souhlal , Linus Torvalds , Catalin Marinas , Will Deacon Subject: Re: [POC][RFC][PATCH 0/2] pstore/mm/x86: Add wildcard memmap to map pstore consistently Message-ID: <202404091628.BEC1FAC8@keescook> References: <20240409210254.660888920@goodmis.org> <20240409172358.34ea19f0@gandalf.local.home> <202404091519.B7B2221@keescook> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: On Tue, Apr 09, 2024 at 10:25:33PM +0000, Luck, Tony wrote: > >> I forgot to mention that this makes it trivial for any machine that doesn't > >> clear memory on soft-reboot, to enable console ramoops (to have access to > >> the last boot dmesg without needing serial). > >> > >> I tested this on a couple of my test boxes and on QEMU, and it works rather > >> well. > > > > I've long wanted a "stable for this machine and kernel" memory region > > like this for pstore. It would make testing much easier. > > Which systems does this work on? I'd assume that servers (and anything > else with ECC memory) would nuke contents while resetting ECC to clean > state. Do ECC servers wipe their RAM by default? I know that if you build with CONFIG_RESET_ATTACK_MITIGATION=y on an EFI system that supports the MemoryOverwriteRequestControl EFI variable you'll get a RAM wipe... -- Kees Cook