[PATCH 4/4] arm64: Enable TEXT_OFFSET fuzzing
Mark Rutland
mark.rutland at arm.com
Fri May 16 09:55:48 PDT 2014
On Fri, May 16, 2014 at 03:06:07PM +0100, Catalin Marinas wrote:
> On Fri, May 16, 2014 at 10:50:39AM +0100, Mark Rutland wrote:
> > --- a/arch/arm64/Kconfig.debug
> > +++ b/arch/arm64/Kconfig.debug
> > @@ -37,4 +37,35 @@ config PID_IN_CONTEXTIDR
> > instructions during context switch. Say Y here only if you are
> > planning to use hardware trace tools with this kernel.
> >
> > +config ARM64_RANDOMIZE_TEXT_OFFSET
> > + bool "Randomize TEXT_OFFSET at build time (EXPERIMENTAL)"
> > + default N
>
> (nitpick: no need for default n)
Thanks for pointing that out, I'll remove it :)
> I think that's good for testing. It would have been nice to be able to
> set some limits for the random offset but I can't figure out an easy way
> to do this via Kconfig (maybe with additional options).
There are hard-coded limits implicit in the randomization -- between 0B
and 2MB in 16B increments:
TEXT_OFFSET := $(shell awk 'BEGIN {srand(); printf "0x%05x\n", and(int(0xfffff * rand()), 0xffff0)}')
The 16B increment is required due to some code in head.S (__turn_mmu_on)
requiring a minimum 16B alignment for the object.
The 2MB maximum comes from the fact we rely on the start of memory being
2MB aligned. I'm not sure there's a compelling reason to limit the
randomization if enabled at all -- either you can handle it or you
can't. Are we ever likely to want an offset larger than the memory
alignment?
> > +config ARM64_TEXT_OFFSET
> > + hex "Required image load offset"
> > + depends on !ARM64_RANDOMIZE_TEXT_OFFSET
> > + default "0x0000000000080000"
>
> I don't think we should include this. It encourages people to set
> specific offsets for their SoCs.
Sure, I was worried about potential abuse also (hence the warning in the
help text). I'll drop this portion.
Cheers,
Mark.
More information about the linux-arm-kernel
mailing list