Re: [PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map

[PATCH v7 00/15] arm64: Unmap linear alias of kernel data/bss · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 01/15] arm64: mm: Remove bogus stop condition from map_mem() loop · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 03/15] arm64: mm: Check for pud_/pmd_set_huge() failures on kernel mappings · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 07/15] arm64: kfence: Avoid NOMAP tricks when mapping the early pool · Ard Biesheuvel <hidden> · 2026-05-29
Re: [PATCH v7 07/15] arm64: kfence: Avoid NOMAP tricks when mapping the early pool · Kevin Brodsky <hidden> · 2026-06-01
[PATCH v7 05/15] arm64: mm: Preserve non-contiguous descriptors when mapping DRAM · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 06/15] arm64: mm: Permit contiguous descriptors to be manipulated · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 11/15] powerpc/code-patching: Avoid r/w mapping of the zero page · Ard Biesheuvel <hidden> · 2026-05-29
Re: [PATCH v7 11/15] powerpc/code-patching: Avoid r/w mapping of the zero page · Mukesh Kumar Chaurasiya <hidden> · 2026-06-03
Re: [PATCH v7 11/15] powerpc/code-patching: Avoid r/w mapping of the zero page · "Christophe Leroy (CS GROUP)" <chleroy@kernel.org> · 2026-06-04
[PATCH v7 10/15] arm64: mm: Don't abuse memblock NOMAP to check for overlaps · Ard Biesheuvel <hidden> · 2026-05-29
Re: [PATCH v7 10/15] arm64: mm: Don't abuse memblock NOMAP to check for overlaps · Kevin Brodsky <hidden> · 2026-06-01
[PATCH v7 02/15] arm64: mm: Drop redundant pgd_t* argument from map_mem() · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 04/15] arm64: mm: Preserve existing table mappings when mapping DRAM · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 08/15] arm64: mm: Permit contiguous attribute for preliminary mappings · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 13/15] mm: Make empty_zero_page[] const · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 12/15] sh: Drop cache flush of the zero page at boot · Ard Biesheuvel <hidden> · 2026-05-29
Re: [PATCH v7 12/15] sh: Drop cache flush of the zero page at boot · Mike Rapoport <rppt@kernel.org> · 2026-05-30
Re: [PATCH v7 12/15] sh: Drop cache flush of the zero page at boot · Geert Uytterhoeven <geert@linux-m68k.org> · 2026-06-01
[PATCH v7 09/15] arm64: Move fixmap and kasan page tables to end of kernel image · Ard Biesheuvel <hidden> · 2026-05-29
[PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map · Ard Biesheuvel <hidden> · 2026-05-29
Re: [PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map · Kevin Brodsky <hidden> · 2026-06-01
Re: [PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map · Marek Szyprowski <m.szyprowski@samsung.com> · 2026-06-09
Re: [PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map · Marek Szyprowski <m.szyprowski@samsung.com> · 2026-06-09
Re: [PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map · "Ard Biesheuvel" <ardb@kernel.org> · 2026-06-09
Re: [PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map · Vladimir Murzin <hidden> · 2026-06-09
Re: [PATCH v7 15/15] arm64: mm: Unmap kernel data/bss entirely from the linear map · Geert Uytterhoeven <geert@linux-m68k.org> · 2026-06-09
[PATCH v7 14/15] arm64: mm: Map the kernel data/bss read-only in the linear map · Ard Biesheuvel <hidden> · 2026-05-29
Re: [PATCH v7 00/15] arm64: Unmap linear alias of kernel data/bss · Will Deacon <will@kernel.org> · 2026-06-02
Re: [PATCH v7 00/15] arm64: Unmap linear alias of kernel data/bss · "Ard Biesheuvel" <ardb@kernel.org> · 2026-06-03
Re: [PATCH v7 00/15] arm64: Unmap linear alias of kernel data/bss · Will Deacon <will@kernel.org> · 2026-06-03
Re: [PATCH v7 00/15] arm64: Unmap linear alias of kernel data/bss · "Ard Biesheuvel" <ardb@kernel.org> · 2026-06-03

From: Vladimir Murzin <hidden>
Date: 2026-06-09 08:26:35
Also in: linux-arm-kernel, linux-hardening, linux-mm, linux-sh, lkml

Hi,

On 6/9/26 07:28, Marek Szyprowski wrote:

On 09.06.2026 08:22, Marek Szyprowski wrote:

quoted

On 29.05.2026 17:02, Ard Biesheuvel wrote:

quoted

From: Ard Biesheuvel <ardb@kernel.org>

The linear aliases of the kernel text and rodata are also mapped
read-only in the linear map. Given that the contents of these regions
are mostly identical to the version in the loadable image, mapping them
read-only and leaving their contents visible is a reasonable hardening
measure.

Data and bss, however, are now also mapped read-only but the contents of
these regions are more likely to contain data that we'd rather not leak.
So let's unmap these entirely in the linear map when the kernel is
running normally.

When going into hibernation or waking up from it, these regions need to
be mapped, so map the region initially, and toggle the valid bit so
map/unmap the region as needed.

Doing so is required because pages covering the kernel image are marked
as PageReserved, and therefore disregarded for snapshotting by the
hibernate logic unless they are mapped.

Signed-off-by: Ard Biesheuvel <ardb@kernel.org>

This commit landed in yesterday's linux-next as commit 63e0b6a5b693
("arm64: mm: Unmap kernel data/bss entirely from the linear map").
In my tests I found that it breaks booting of RaspberryPi3 and
RaspberryPi4 boards with the following kernel panic:

One more comment - reverting 63e0b6a5b693 and 53205d56212c (dependent
change) on top of next-20260608 fixes this issue.

Thanks for report! It seems it already has been reported and discussed in
another thread [1].

[1] https://lore.kernel.org/linux-arm-kernel/aicVyebkEMs6w6UV@sirena.co.uk/ (local)

Cheers
Vladimir

Best regards
-- Marek Szyprowski, PhD Samsung R&D Institute Poland

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help