diff options
| author | Costa Shulyupin <costa.shul@redhat.com> | 2023-08-26 18:56:08 +0200 |
|---|---|---|
| committer | Jonathan Corbet <corbet@lwn.net> | 2023-10-10 21:35:55 +0200 |
| commit | 17e02586ed18501c11115b8dea9055a5973f45a4 (patch) | |
| tree | aabd2f7273060d14ea90bdcb0fa1bf28972f90ef /Documentation/powerpc/kaslr-booke32.rst | |
| parent | mm/memory-hotplug: fix typo in documentation (diff) | |
| download | linux-17e02586ed18501c11115b8dea9055a5973f45a4.tar.xz linux-17e02586ed18501c11115b8dea9055a5973f45a4.zip | |
docs: move powerpc under arch
and fix all in-tree references.
Architecture-specific documentation is being moved into Documentation/arch/
as a way of cleaning up the top-level documentation directory and making
the docs hierarchy more closely match the source hierarchy.
Signed-off-by: Costa Shulyupin <costa.shul@redhat.com>
Acked-by: Michael Ellerman <mpe@ellerman.id.au>
Signed-off-by: Jonathan Corbet <corbet@lwn.net>
Link: https://lore.kernel.org/r/20230826165737.2101199-1-costa.shul@redhat.com
Diffstat (limited to 'Documentation/powerpc/kaslr-booke32.rst')
| -rw-r--r-- | Documentation/powerpc/kaslr-booke32.rst | 42 |
1 files changed, 0 insertions, 42 deletions
diff --git a/Documentation/powerpc/kaslr-booke32.rst b/Documentation/powerpc/kaslr-booke32.rst deleted file mode 100644 index 5681c1d1b65b..000000000000 --- a/Documentation/powerpc/kaslr-booke32.rst +++ /dev/null @@ -1,42 +0,0 @@ -.. SPDX-License-Identifier: GPL-2.0 - -=========================== -KASLR for Freescale BookE32 -=========================== - -The word KASLR stands for Kernel Address Space Layout Randomization. - -This document tries to explain the implementation of the KASLR for -Freescale BookE32. KASLR is a security feature that deters exploit -attempts relying on knowledge of the location of kernel internals. - -Since CONFIG_RELOCATABLE has already supported, what we need to do is -map or copy kernel to a proper place and relocate. Freescale Book-E -parts expect lowmem to be mapped by fixed TLB entries(TLB1). The TLB1 -entries are not suitable to map the kernel directly in a randomized -region, so we chose to copy the kernel to a proper place and restart to -relocate. - -Entropy is derived from the banner and timer base, which will change every -build and boot. This not so much safe so additionally the bootloader may -pass entropy via the /chosen/kaslr-seed node in device tree. - -We will use the first 512M of the low memory to randomize the kernel -image. The memory will be split in 64M zones. We will use the lower 8 -bit of the entropy to decide the index of the 64M zone. Then we chose a -16K aligned offset inside the 64M zone to put the kernel in:: - - KERNELBASE - - |--> 64M <--| - | | - +---------------+ +----------------+---------------+ - | |....| |kernel| | | - +---------------+ +----------------+---------------+ - | | - |-----> offset <-----| - - kernstart_virt_addr - -To enable KASLR, set CONFIG_RANDOMIZE_BASE = y. If KASLR is enabled and you -want to disable it at runtime, add "nokaslr" to the kernel cmdline. |