From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=KBoR=HE=kvack.org=owner-linux-mm@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-5.7 required=3.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,
	SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED autolearn=no autolearn_force=no
	version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 51D0BC433E6
	for <linux-mm@archiver.kernel.org>; Tue,  2 Feb 2021 22:51:22 +0000 (UTC)
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by mail.kernel.org (Postfix) with ESMTP id AC70F64D90
	for <linux-mm@archiver.kernel.org>; Tue,  2 Feb 2021 22:51:21 +0000 (UTC)
DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org AC70F64D90
Authentication-Results: mail.kernel.org; dmarc=none (p=none dis=none) header.from=linux-foundation.org
Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=owner-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix)
	id 2650A6B0006; Tue,  2 Feb 2021 17:51:21 -0500 (EST)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id 214AC6B006C; Tue,  2 Feb 2021 17:51:21 -0500 (EST)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id 12D056B006E; Tue,  2 Feb 2021 17:51:21 -0500 (EST)
X-Delivered-To: linux-mm@kvack.org
Received: from forelay.hostedemail.com (smtprelay0249.hostedemail.com [216.40.44.249])
	by kanga.kvack.org (Postfix) with ESMTP id F26256B0006
	for <linux-mm@kvack.org>; Tue,  2 Feb 2021 17:51:20 -0500 (EST)
Received: from smtpin15.hostedemail.com (10.5.19.251.rfc1918.com [10.5.19.251])
	by forelay01.hostedemail.com (Postfix) with ESMTP id BC483180AD81A
	for <linux-mm@kvack.org>; Tue,  2 Feb 2021 22:51:20 +0000 (UTC)
X-FDA: 77774825520.15.land02_5713e1b275ce
Received: from filter.hostedemail.com (10.5.16.251.rfc1918.com [10.5.16.251])
	by smtpin15.hostedemail.com (Postfix) with ESMTP id 9C9541814B0C1
	for <linux-mm@kvack.org>; Tue,  2 Feb 2021 22:51:20 +0000 (UTC)
X-HE-Tag: land02_5713e1b275ce
X-Filterd-Recvd-Size: 5152
Received: from mail-lf1-f48.google.com (mail-lf1-f48.google.com [209.85.167.48])
	by imf11.hostedemail.com (Postfix) with ESMTP
	for <linux-mm@kvack.org>; Tue,  2 Feb 2021 22:51:20 +0000 (UTC)
Received: by mail-lf1-f48.google.com with SMTP id b2so30554301lfq.0
        for <linux-mm@kvack.org>; Tue, 02 Feb 2021 14:51:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=linux-foundation.org; s=google;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=+9krdDlER7nO0uQSN0FBS16AynTCBOll5fbT8VYMinM=;
        b=Qlsv2h0Plid5mDH3CHuEkJ6gQAw2QIc//0ZoRgMoJmE55ll7JUzmhoz98kNWxXNK5R
         RnFI75ha8WMAFzprmVwnMtkxFQk5+KAtpEixh5rW9WIqtpR/sWSL51oAZoRJ2sltvu9u
         cwP1n7LK1CcoiBibnu23KkHAJX2oM6Tk9Q14U=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=+9krdDlER7nO0uQSN0FBS16AynTCBOll5fbT8VYMinM=;
        b=FXddOZlqpy4GFFKddD4TKtEUTnjlPr5+bvb93K+LgGpXBvmRPc1vNgmTCsAPmb5SeF
         5Tb7ha4CCJGV2664SQLB47C7AUgnM6m39qhE3SXNEmSZCk8ZQ4Py6QmxsTnFdQ+dQFaH
         nTzNYgQay5ZFHtn0ePG2hhLsHW0nW1Lcvyhek6GLx67GkGIMUOr6NSBqhIyiJoCxIGXi
         futRa7AxAwKjl5bfiF+YlfWittutuCftbaA/BBsalphopq4WVjwAk53xIVQ+3OQSmRu1
         rBjkI9cqGlKKQKPzzRFykSTkPB+weTVC/nywrOXjZHtspoycEnim+lAp2mYLmNvQq/gp
         IUtw==
X-Gm-Message-State: AOAM531z3aewHZPq9NtuLAdQqWzOg4IE6+6glLDHIdihDu3ySvJiSGi9
	nLrB605wyRWHfC9S2ScDUT+UeV36VOYL+A==
X-Google-Smtp-Source: ABdhPJz3c8TbaGan+sTMDyn3E8GDcw5m7TZI9tENcYP9cCtqnFkqJjAEkk4pFe2Xy9kguTwq1+6EsA==
X-Received: by 2002:a19:4c83:: with SMTP id z125mr105816lfa.177.1612306278110;
        Tue, 02 Feb 2021 14:51:18 -0800 (PST)
Received: from mail-lj1-f181.google.com (mail-lj1-f181.google.com. [209.85.208.181])
        by smtp.gmail.com with ESMTPSA id 24sm17544lju.113.2021.02.02.14.51.16
        for <linux-mm@kvack.org>
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Tue, 02 Feb 2021 14:51:17 -0800 (PST)
Received: by mail-lj1-f181.google.com with SMTP id s18so26022363ljg.7
        for <linux-mm@kvack.org>; Tue, 02 Feb 2021 14:51:16 -0800 (PST)
X-Received: by 2002:a2e:b1c8:: with SMTP id e8mr7297437lja.251.1612306276462;
 Tue, 02 Feb 2021 14:51:16 -0800 (PST)
MIME-Version: 1.0
References: <20210202201846.716915-1-timur@kernel.org> <202102021351.AEDE896AB3@keescook>
 <9ce56a1c-9ea6-996b-84c6-cfde908c2ecd@kernel.org> <20210202173436.6516c676@gandalf.local.home>
In-Reply-To: <20210202173436.6516c676@gandalf.local.home>
From: Linus Torvalds <torvalds@linux-foundation.org>
Date: Tue, 2 Feb 2021 14:51:00 -0800
X-Gmail-Original-Message-ID: <CAHk-=wgaK4cz=K-JB4p-KPXBV73m9bja2w1W1Lr3iu8+NEPk7A@mail.gmail.com>
Message-ID: <CAHk-=wgaK4cz=K-JB4p-KPXBV73m9bja2w1W1Lr3iu8+NEPk7A@mail.gmail.com>
Subject: Re: [PATCH] lib/vsprintf: make-printk-non-secret printks all
 addresses as unhashed
To: Steven Rostedt <rostedt@goodmis.org>
Cc: Timur Tabi <timur@kernel.org>, Kees Cook <keescook@chromium.org>, 
	Petr Mladek <pmladek@suse.com>, Sergey Senozhatsky <sergey.senozhatsky@gmail.com>, 
	Linux Kernel Mailing List <linux-kernel@vger.kernel.org>, Linux-MM <linux-mm@kvack.org>, 
	Matthew Wilcox <willy@infradead.org>, Andrew Morton <akpm@linux-foundation.org>, roman.fietze@magna.com, 
	John Ogness <john.ogness@linutronix.de>, Akinobu Mita <akinobu.mita@gmail.com>
Content-Type: text/plain; charset="UTF-8"
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>

On Tue, Feb 2, 2021 at 2:34 PM Steven Rostedt <rostedt@goodmis.org> wrote:
>
>   "I also suspect that everybody has already accepted that KASLR isn't
>    really working locally anyway (due to all the hw leak models with
>    cache and TLB timing), so anybody who can look at kernel messages
>    already probably could figure most of those things out."

Honestly, if you have to pass a kernel command line, and there's a big
notice in the kernel messages about this, I no longer care.

Because it means that people who _do_ care will know about it.

But I don't want it to be a kernel config option - if you do
debugging, and you want unhidden pointers, you can add it to the
kernel command line and make sure it's *your* choice and not some
random kernel config by somebody else (ie distro).

And yes, my opinion is that KASRL really only works remotely anyway. I
think we might as well accept that as a fact, and that it's unlikely
that hardware will be fixed in general, even if on _some_ hardware
might make it work better than it works in general.

Instead of fighting windmills, accept that KASRL is dead locally for
the "wide access" cases (ie not necessarily just "shell access", but
"local JIT of uncontrolled code"), but do it because the remote case
still matters, and because a lot of local accesses are fairly
constrained in that they do *not* give random code execution to the
local users (but that "fairly constrained" presumably also generally
means that they can't do dmesg).

             Linus