Re: [PATCH] lib/vsprintf: make-printk-non-secret printks all addresses as unhashed

From: Timur Tabi
Date: Thu Feb 04 2021 - 17:21:33 EST

Next message: Kuninori Morimoto: "Re: [PATCH v2 0/3] Rename audio graph export functions"
Previous message: Ben Gardon: "[PATCH] KVM: VMX: Optimize flushing the PML buffer"
In reply to: Kees Cook: "Re: [PATCH] lib/vsprintf: make-printk-non-secret printks all addresses as unhashed"
Next in thread: Pavel Machek: "Re: [PATCH] lib/vsprintf: make-printk-non-secret printks all addresses as unhashed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2/4/21 4:17 PM, Kees Cook wrote:

It's just semantics. Printing addresses DOES weaken the security of a
system, especially when we know attackers have and do use stuff from dmesg
to tune their attacks. How about "reduces the security of your system"?

I think we're bikeshedding now, but I can replace "compromise" with "reduce".

"Kernel memory addresses are exposed, which may reduce the security of your system."

Next message: Kuninori Morimoto: "Re: [PATCH v2 0/3] Rename audio graph export functions"
Previous message: Ben Gardon: "[PATCH] KVM: VMX: Optimize flushing the PML buffer"
In reply to: Kees Cook: "Re: [PATCH] lib/vsprintf: make-printk-non-secret printks all addresses as unhashed"
Next in thread: Pavel Machek: "Re: [PATCH] lib/vsprintf: make-printk-non-secret printks all addresses as unhashed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]