From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-db3eur04on2052.outbound.protection.outlook.com [40.107.6.52]) by sourceware.org (Postfix) with ESMTPS id 20A073857C44; Wed, 4 Oct 2023 07:30:35 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 20A073857C44 Authentication-Results: sourceware.org; dmarc=pass (p=none dis=none) header.from=arm.com Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=arm.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IJAJcODwp19ma8p5sF0xeB3Q8xazJsJYLWK8rqmCKQ4=; b=N3gox4k9znoF6yLygTCjFA+Xl/hWThF9CphGIKHLWsE0T1NQG42nlSQeX1mDb6rP3n3xhJmdcn77MJG13Z4X28Araqgbm+IacZbtjB9rDA82mhAKGnFHajwU/vuXYzkK8DoglmILqJvCl7KpY1k8msU76DNe43XkBSuXtu+a3uo= Received: from DB8P191CA0028.EURP191.PROD.OUTLOOK.COM (2603:10a6:10:130::38) by AS4PR08MB7805.eurprd08.prod.outlook.com (2603:10a6:20b:518::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6838.26; Wed, 4 Oct 2023 07:30:28 +0000 Received: from DBAEUR03FT032.eop-EUR03.prod.protection.outlook.com (2603:10a6:10:130:cafe::b5) by DB8P191CA0028.outlook.office365.com (2603:10a6:10:130::38) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6838.33 via Frontend Transport; Wed, 4 Oct 2023 07:30:28 +0000 X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;dmarc=pass action=none header.from=arm.com; Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com; pr=C Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by DBAEUR03FT032.mail.protection.outlook.com (100.127.142.185) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6863.26 via Frontend Transport; Wed, 4 Oct 2023 07:30:27 +0000 Received: ("Tessian outbound fb5c0777b309:v211"); Wed, 04 Oct 2023 07:30:27 +0000 X-CheckRecipientChecked: true X-CR-MTA-CID: 57ae0ea097c197f6 X-CR-MTA-TID: 64aa7808 Received: from 21555b0ffbf3.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id ED3E6CE5-DAC4-4CCA-BCD7-A94C4C6CB8B1.1; Wed, 04 Oct 2023 07:30:21 +0000 Received: from EUR04-VI1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 21555b0ffbf3.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Wed, 04 Oct 2023 07:30:21 +0000 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dVllOAtU6k8XJjjwzlczYTnUEulpqcG7EDRDMJG9ehEN+sqB24+H0cHUZz82DiZwqHyhrz0jvekjlMzW90zvL2LtkkMoGeuiP2bWW8SXQE3JH+Z8jSY16cy192rIDjlHjb/wQVfNoNof8Zb9zvGwRmRtJnl++wYUwQruKJJPqed+JSDhow9WWJzAkwGp84DGX86Q167noo/cnuHWK4tzUqmgw0x8q+YfWY19q1FHSztxCDwlmDjtK1xNiaf/vHEKetf2TIs3EKJmK+U7kwPe1PwNFslZDDTICtYrjEoggUOVY1uiePHlC5DZyW/odfAh/3AkK4FJ8eCI/mCayrgtSg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=IJAJcODwp19ma8p5sF0xeB3Q8xazJsJYLWK8rqmCKQ4=; b=kkO/M+HqJGnbtg7rpgzGhqTNhH0u1A6mQRnxNQ7uqb+OVxU0EOeIjZ/8Yjh2oeaUfUxg0Vu9xBAmdEGaduWxEFSY08mMGioR0lOvUebpgLWQnVVtUnf2DhcNOo4Ytin2exoAxNBqq2/rGwUkYtcxD1h6R0w2MwGtaj0R9env7Prtcn5VDYdxLK8O6vF2lzmVMHzR6Ga44iDBxbNKpcZDMYmzr0Ttgtykmrn8CGHHXG+iG/Rcvfj3IIHJCg0u8+AnQW7Sy/cOa+FCA2tzr3KMenI/0jBbj7+Xu8VMtx3++PrFiwalyPeZsOLq5rTlB0WGpG/FhVHa8TCumcwCO1yyzA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IJAJcODwp19ma8p5sF0xeB3Q8xazJsJYLWK8rqmCKQ4=; b=N3gox4k9znoF6yLygTCjFA+Xl/hWThF9CphGIKHLWsE0T1NQG42nlSQeX1mDb6rP3n3xhJmdcn77MJG13Z4X28Araqgbm+IacZbtjB9rDA82mhAKGnFHajwU/vuXYzkK8DoglmILqJvCl7KpY1k8msU76DNe43XkBSuXtu+a3uo= Authentication-Results-Original: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com; Received: from PAXPR08MB7172.eurprd08.prod.outlook.com (2603:10a6:102:20a::19) by AS8PR08MB6662.eurprd08.prod.outlook.com (2603:10a6:20b:397::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6838.33; Wed, 4 Oct 2023 07:30:19 +0000 Received: from PAXPR08MB7172.eurprd08.prod.outlook.com ([fe80::736d:8f20:56bd:a219]) by PAXPR08MB7172.eurprd08.prod.outlook.com ([fe80::736d:8f20:56bd:a219%3]) with mapi id 15.20.6838.029; Wed, 4 Oct 2023 07:30:18 +0000 Date: Wed, 4 Oct 2023 08:29:59 +0100 From: Szabolcs Nagy To: Siddhesh Poyarekar , libc-alpha@sourceware.org Cc: adhemerval.zanella@linaro.org, fweimer@redhat.com, carlos@redhat.com Subject: Re: [PATCH 2/2] aarch64: Make glibc.mem.tagging SXID_ERASE Message-ID: Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <20231003201151.1406279-3-siddhesh@sourceware.org> X-ClientProxiedBy: DM6PR06CA0093.namprd06.prod.outlook.com (2603:10b6:5:336::26) To PAXPR08MB7172.eurprd08.prod.outlook.com (2603:10a6:102:20a::19) MIME-Version: 1.0 X-MS-TrafficTypeDiagnostic: PAXPR08MB7172:EE_|AS8PR08MB6662:EE_|DBAEUR03FT032:EE_|AS4PR08MB7805:EE_ X-MS-Office365-Filtering-Correlation-Id: e718b47b-62a7-453c-3231-08dbc4abc826 x-checkrecipientrouted: true NoDisclaimer: true X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam-Untrusted: BCL:0; X-Microsoft-Antispam-Message-Info-Original: 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 X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PAXPR08MB7172.eurprd08.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230031)(346002)(396003)(136003)(39860400002)(366004)(376002)(230922051799003)(64100799003)(1800799009)(186009)(451199024)(83380400001)(26005)(44832011)(5660300002)(8676002)(8936002)(4326008)(6512007)(2616005)(6506007)(6666004)(478600001)(6486002)(38100700002)(316002)(66946007)(66556008)(66476007)(36756003)(2906002)(41300700001)(86362001);DIR:OUT;SFP:1101; X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR08MB6662 Original-Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com; X-EOPAttributedMessage: 0 X-MS-Exchange-Transport-CrossTenantHeadersStripped: DBAEUR03FT032.eop-EUR03.prod.protection.outlook.com X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id-Prvs: f2a0b298-bff1-4afe-3495-08dbc4abc205 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:63.35.35.123;CTRY:IE;LANG:en;SCL:1;SRV:;IPV:CAL;SFV:NSPM;H:64aa7808-outbound-1.mta.getcheckrecipient.com;PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com;CAT:NONE;SFS:(13230031)(4636009)(396003)(136003)(39860400002)(346002)(376002)(230922051799003)(1800799009)(451199024)(82310400011)(64100799003)(186009)(36840700001)(40470700004)(46966006)(4326008)(6512007)(6486002)(316002)(478600001)(6506007)(83380400001)(26005)(2616005)(36756003)(356005)(40460700003)(81166007)(86362001)(82740400003)(336012)(40480700001)(36860700001)(2906002)(8676002)(450100002)(107886003)(47076005)(6666004)(70586007)(8936002)(70206006)(5660300002)(44832011)(41300700001);DIR:OUT;SFP:1101; X-OriginatorOrg: arm.com X-MS-Exchange-CrossTenant-OriginalArrivalTime: 04 Oct 2023 07:30:27.9299 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: e718b47b-62a7-453c-3231-08dbc4abc826 X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d;Ip=[63.35.35.123];Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com] X-MS-Exchange-CrossTenant-AuthSource: DBAEUR03FT032.eop-EUR03.prod.protection.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS4PR08MB7805 X-Spam-Status: No, score=-11.8 required=5.0 tests=BAYES_00,DKIM_SIGNED,DKIM_VALID,FORGED_SPF_HELO,GIT_PATCH_0,KAM_DMARC_NONE,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_HELO_PASS,SPF_NONE,TXREP,UNPARSEABLE_RELAY autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org List-Id: The 10/03/2023 16:11, Siddhesh Poyarekar wrote: > Limit effect of memory tagging to the same process and don't let it > bleed across privilege boundaries into non-setuid children of setuid > processes. > > Signed-off-by: Siddhesh Poyarekar the description does not match the documented behaviour of SXID_IGNORE. (the setuid binary passes on the setting from its parent, i don't see the privilege boundary crossing) and it does not explain why would you want to turn a security hardening feature off. i'm not against the patch as the heap tagging feature is very experimental at this point, but it needs a better explanation. > --- > elf/dl-tunables.list | 1 - > 1 file changed, 1 deletion(-) > > diff --git a/elf/dl-tunables.list b/elf/dl-tunables.list > index 42d8ffd06d..44baf10eaa 100644 > --- a/elf/dl-tunables.list > +++ b/elf/dl-tunables.list > @@ -152,7 +152,6 @@ glibc { > type: INT_32 > minval: 0 > maxval: 255 > - security_level: SXID_IGNORE > } > } > > -- > 2.41.0 >