Received: by 2002:ab2:6816:0:b0:1f9:5764:f03e with SMTP id t22csp445545lqo; Thu, 16 May 2024 10:31:07 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCVAcQfKVen2+ib8a6Yocl5OcGmQzs8aSZGSs/0joJAbNl4pAnF2+a5+2Sh2BCssy8xpzWufxWmSEEk3iXRuQ/hkRXRb/vSDHuB6TOCQqg== X-Google-Smtp-Source: AGHT+IEw4PQuTPPbsDy4ISKTvLPMgzlrj4xvzxfv12bYAgXTm+h4mgsWOlwkoOVoQ0xzY/BCRJQF X-Received: by 2002:a05:622a:1ba0:b0:43e:2573:e877 with SMTP id d75a77b69052e-43e2573ec78mr108588101cf.63.1715880667100; Thu, 16 May 2024 10:31:07 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1715880667; cv=pass; d=google.com; s=arc-20160816; b=hy7qKJgJdvW1ysR42p1yoT8NnlRJXC3me7S8S85i0ZAg5Xxhz9TNhhnwxvK9kjbnlG 7fGFVT9TEA5g+u3fVuM4ZvNjBpxuw12i5OHfX02fCjpkqVP4h3/duK53c3owQU56BfHi LHeq0dhhCWYC5ENxTZ9+GkZiLExV4cAZ+87i0XAhitKI26z8eDHhf7qfPQR2kDZiMRL4 GpWqA96lorKVe5n5h8v06zP4ANkj9ez/SGXU1Q21EwO6jxEFu5Xgu5ydfVVN/8O7/5kn vO9O6ofTqKOkQ0gghKMhfp0t+PBQFSjmtue3UssZu0b+bffNw5wNZjG3TlFoycuhVAIL 3Dyg== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:list-unsubscribe:list-subscribe:list-id:precedence :dkim-signature; bh=AzdaOrhGtep2kiJJKcuHoTinfqmwfr6/5CJDCo9riY8=; fh=MusuOog/z4b7gmE8oSihNdp1IuW/OJAZjUkrgdxPGOE=; b=nEOFvP+SpxfkZRZ7rIXkvsGx2oqvcRz4yrrVh5UOiNLLDo/GE2suUDFJ2qWA0TJqRG CJE0/e0vrQEtRozkD3893ye5MZZYmjEYR4/baT8h2GNAKrnKB+VTfXBBK9F5c2s4vQ1D 3TCDaoAiDrcURLi0s1OOX2r2mhy1wN2z77Uzr1IMDeQQI3wtYpxYVEz67LBMHkIx144+ ASuRU8DNAgfp7SVrXKTF4hb8vCQVyRlB5LiAyC64TFcPEJ153lqGMr10u6uJn7wAtZeG p+lKlHMk1hs2YdHAIWL+CJakTU126Ffkla81d/mqhhzYemfCMTlx4aLB60xGf12VD/Ks b+lQ==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=S5EImDGb; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181372-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181372-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223]) by mx.google.com with ESMTPS id d75a77b69052e-43df54a117bsi180654531cf.56.2024.05.16.10.31.06 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 16 May 2024 10:31:07 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-181372-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=S5EImDGb; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181372-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181372-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id C6DB01C21064 for ; Thu, 16 May 2024 17:31:06 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 407D9156872; Thu, 16 May 2024 17:31:02 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="S5EImDGb" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 5E59C1553BD; Thu, 16 May 2024 17:31:01 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715880661; cv=none; b=F17XP6OXoR1lPAK/cNFvZdw5QabWrkApCrtNm6JBgexQs7rxamxOZ9u1uJHTNYQWF9CsLD4Q0QXAc60E81Px1MgwCqC3ir8N0o+uS7aHNCMxAueb2E60rohE5vo1YiPta9xlIjAQGVy6YaIwfreTvHOvmmXmQB2x4mlKx/aYRSY= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715880661; c=relaxed/simple; bh=AzdaOrhGtep2kiJJKcuHoTinfqmwfr6/5CJDCo9riY8=; h=MIME-Version:References:In-Reply-To:From:Date:Message-ID:Subject: To:Cc:Content-Type; b=qBzVMabozkfLhsvRw58ZLnaHnrtG+rqYzxjjEPAexaWwc+5hLc1yVj22HeJ8+EixUXa1ttImoY/pWyHy6kaavvCHpqtkXKUhCDxnI6OOgrmXQbwXfICC7epRpmoeAMu8ZLGpaGncbS1axMR5jjmZWVYSYhm2hCznfDLFiM3M/ks= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=S5EImDGb; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id D66B6C113CC; Thu, 16 May 2024 17:31:00 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1715880660; bh=AzdaOrhGtep2kiJJKcuHoTinfqmwfr6/5CJDCo9riY8=; h=References:In-Reply-To:From:Date:Subject:To:Cc:From; b=S5EImDGbO+wSPMgV91SqzCPyo8jC5cJS7Dg67yVG83Zg6Egrh+DePKJ8dVkw5pGHM swsedIWMLMX0JXjjMpLyX9YidwdlVz6PCc26m/Fl4HsYKjN10H77FayTIm+ez/pNTk 1bBxT4HlzvptNcj1s7adQZFPgahiWm7w/HrfGWA5bF/6xnCek55xeqZ7BEFEXsfZLT 368ZoGbEonq9T/Ft5dRntO8fqKx3dx2BG6QwjfZk8KqHGdMr0t8TOb0yuYGl3fAJsc 340m/V0MZ4wtCllD/5dO/xSAd5X9i2eOUlmUgRLYtU0ayqnaw4lF9T10hIA2WLUjUT BgV2N+Bh1l7pQ== Received: by mail-lf1-f51.google.com with SMTP id 2adb3069b0e04-52192578b95so1325134e87.2; Thu, 16 May 2024 10:31:00 -0700 (PDT) X-Forwarded-Encrypted: i=1; AJvYcCWxPFcZa4d9DdrOMr3kgwOSR2W+FaEHcUkI0oYsyNZzMhZUaqo+q4VAAxlABL3KPf50lveWqUFVJfYqsuA5Jghu68RKt91fGBIYYBghNU29Ozu7y5HNrh0Rcbw6K1gTX8rHuQmpoZ27C3S/QeQu3h2U3RcV/Pjsjx1ySyfkmO6M X-Gm-Message-State: AOJu0YyufCdrk9vH4Q/IchPg9BvQyv8KHm4ifVwRGAnmVDZjDrxNAwvo zj/AyCd+xC5mjXXkib8mOads1v1+7bA8brusH0eIQOqhu5kln7xHPGhycr6icQotpcbZO/bLC4R XNCj1Ikjgad/uwDLmzw6g7g4ayjM= X-Received: by 2002:a05:6512:3b20:b0:51d:2eba:614 with SMTP id 2adb3069b0e04-5220fe7a025mr15549611e87.53.1715880659275; Thu, 16 May 2024 10:30:59 -0700 (PDT) Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 References: <20240516090541.4164270-2-ardb+git@google.com> In-Reply-To: From: Ard Biesheuvel Date: Thu, 16 May 2024 19:30:47 +0200 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [PATCH] x86/efistub: Omit physical KASLR when memory reservations exist To: "Chaney, Ben" Cc: Ard Biesheuvel , "linux-efi@vger.kernel.org" , "keescook@chromium.org" , "linux-kernel@vger.kernel.org" , "x86@kernel.org" , "stable@vger.kernel.org" Content-Type: text/plain; charset="UTF-8" On Thu, 16 May 2024 at 19:29, Chaney, Ben wrote: > > > +static efi_status_t parse_options(const char *cmdline) > > +{ > > + static const char opts[][14] = { > > + "mem=", "memmap=", "efi_fake_mem=", "hugepages=" > > + }; > > + > > I think we probably want to include both crashkernel and pstore as arguments that can disable this randomization. > The existing code in arch/x86/boot/compressed/kaslr.c currently does not take these into account, as far as I can tell.