[PATCH v2 01/11] mm: Implement stack frame object validation

[PATCH v2 0/11] mm: Hardened usercopy · Kees Cook <hidden> · 2016-07-13
[PATCH v2 01/11] mm: Implement stack frame object validation · Kees Cook <hidden> · 2016-07-13
Re: [PATCH v2 01/11] mm: Implement stack frame object validation · Andy Lutomirski <luto@amacapital.net> · 2016-07-13
Re: [PATCH v2 01/11] mm: Implement stack frame object validation · Kees Cook <hidden> · 2016-07-13
Re: [PATCH v2 01/11] mm: Implement stack frame object validation · Josh Poimboeuf <hidden> · 2016-07-14
Re: [PATCH v2 01/11] mm: Implement stack frame object validation · Kees Cook <hidden> · 2016-07-14
Re: [PATCH v2 01/11] mm: Implement stack frame object validation · Josh Poimboeuf <hidden> · 2016-07-14
Re: [PATCH v2 01/11] mm: Implement stack frame object validation · Kees Cook <hidden> · 2016-07-14
[PATCH v2 04/11] ARM: uaccess: Enable hardened usercopy · Kees Cook <hidden> · 2016-07-13
[PATCH v2 03/11] x86/uaccess: Enable hardened usercopy · Kees Cook <hidden> · 2016-07-13
[PATCH v2 02/11] mm: Hardened usercopy · Kees Cook <hidden> · 2016-07-13
Re: [PATCH v2 02/11] mm: Hardened usercopy · Balbir Singh <bsingharora@gmail.com> · 2016-07-14
Re: [PATCH v2 02/11] mm: Hardened usercopy · Rik van Riel <hidden> · 2016-07-15
Re: [PATCH v2 02/11] mm: Hardened usercopy · Balbir Singh <bsingharora@gmail.com> · 2016-07-15
Re: [PATCH v2 02/11] mm: Hardened usercopy · Kees Cook <hidden> · 2016-07-15
Re: [PATCH v2 02/11] mm: Hardened usercopy · Kees Cook <hidden> · 2016-07-15
Re: [PATCH v2 02/11] mm: Hardened usercopy · Balbir Singh <bsingharora@gmail.com> · 2016-07-15
Re: [PATCH v2 02/11] mm: Hardened usercopy · Kees Cook <hidden> · 2016-07-15
Re: [kernel-hardening] Re: [PATCH v2 02/11] mm: Hardened usercopy · Daniel Micay <hidden> · 2016-07-15
Re: [kernel-hardening] Re: [PATCH v2 02/11] mm: Hardened usercopy · Kees Cook <hidden> · 2016-07-15
Re: [kernel-hardening] Re: [PATCH v2 02/11] mm: Hardened usercopy · Daniel Micay <hidden> · 2016-07-15
Re: [kernel-hardening] Re: [PATCH v2 02/11] mm: Hardened usercopy · Kees Cook <hidden> · 2016-07-15
[PATCH v2 05/11] arm64/uaccess: Enable hardened usercopy · Kees Cook <hidden> · 2016-07-13
[PATCH v2 06/11] ia64/uaccess: Enable hardened usercopy · Kees Cook <hidden> · 2016-07-13
[PATCH v2 11/11] mm: SLUB hardened usercopy support · Kees Cook <hidden> · 2016-07-13
Re: [PATCH v2 11/11] mm: SLUB hardened usercopy support · Balbir Singh <bsingharora@gmail.com> · 2016-07-15
Re: [PATCH v2 11/11] mm: SLUB hardened usercopy support · Kees Cook <hidden> · 2016-07-15
[PATCH v2 08/11] sparc/uaccess: Enable hardened usercopy · Kees Cook <hidden> · 2016-07-13
[PATCH v2 10/11] mm: SLAB hardened usercopy support · Kees Cook <hidden> · 2016-07-13
[PATCH v2 09/11] s390/uaccess: Enable hardened usercopy · Kees Cook <hidden> · 2016-07-13
[PATCH v2 07/11] powerpc/uaccess: Enable hardened usercopy · Kees Cook <hidden> · 2016-07-13

From: Kees Cook <hidden>
Date: 2016-07-13 22:04:36
Also in: linux-arch, linux-mm, linuxppc-dev, lkml, sparclinux

On Wed, Jul 13, 2016 at 3:01 PM, Andy Lutomirski [off-list ref] wrote:

On Wed, Jul 13, 2016 at 2:55 PM, Kees Cook [off-list ref] wrote:

quoted

This creates per-architecture function arch_within_stack_frames() that
should validate if a given object is contained by a kernel stack frame.
Initial implementation is on x86.

This is based on code from PaX.

This, along with Josh's livepatch work, are two examples of unwinders
that matter for correctness instead of just debugging.  ISTM this
should just use Josh's code directly once it's been written.

Do you have URL for Josh's code? I'd love to see what happening there.

In the meantime, usercopy can use this...

-Kees

-- 
Kees Cook
Chrome OS & Brillo Security

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help