Message ID | 20221027092812.185993858@infradead.org |
---|---|
Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org> Delivered-To: ouuuleilei@gmail.com Received: by 2002:a5d:6687:0:0:0:0:0 with SMTP id l7csp129884wru; Thu, 27 Oct 2022 02:40:50 -0700 (PDT) X-Google-Smtp-Source: AMsMyM6lntEdUWUjDgPOGZYKVnTtRI+fU4J/CgNoobtUZxnX1SrfNLNy/sHFopQik00rQzO9SIKt X-Received: by 2002:aa7:c04f:0:b0:457:1b08:d056 with SMTP id k15-20020aa7c04f000000b004571b08d056mr46505583edo.146.1666863650694; Thu, 27 Oct 2022 02:40:50 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1666863650; cv=none; d=google.com; s=arc-20160816; b=IpiOyfUmbqBRr0EBL6qHuxmOcuwjO9nWl8zV4KxL3wxJidX4mpSrSic7L4ePnvh6nx NIS+R/K2yEkT6i0cPIxU8ZkGQLrR3LeVBzq+Kv1aBisYD4WHX/f19+RMCz7FUJdkNyrK JRFUybOdERhy/zjyHloxrIe8SJ1YEJEcDu/2EZjBHiGlFTGnYzfxHJFsrv4adWYdIcXS 130K3KYlf+7Pkx1AoXTWRfF8/VtM6Khk/AkWvA4JtTHEvF14PGySq4DvqDkL/rJJ70C5 GHBPovEmAGSxcFVqQqGPH9AN635onAheGiVuIxvTcRAczb2yfRLd1Pb6kI+X/Fh4uyNR xxOg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:subject:cc:to:from:date:user-agent:message-id :dkim-signature; bh=+JOutcbc7GRNl3P9qo6jvKuTc9hJH1Pdy+f0Fv335qI=; b=qsPdyh1qCEtqk4b4h1IvyKFp9Jx6lM6QkjpIbRnBQoKYTtUq/5hVVhezCHAZhhev58 dnCSyPiFOvXtn53imINWYxEvyUMpGEcXEA4nJWXQ8CKmlVwop77JbbrDgacJfu1QpX+r o6A7uUYeXXDlkH6EFWB0SDy0wVbS9M+f9h+k6F6APdG2lXAbv1ltsy5wOm3UZb1u0tFc 7qqBMW6eTG7OAb1yhozcuSPXV9JC4dlUGRIp/K5MnnR7f93Jxa9LnO7hW4HH/1qMWmkh aSZvFgbdTOP/nuWW1Nke5NdRfXyfOKYHX+SgW5qnrr8RCfXzkeD3bEKFjOlfo1sywE3z svPw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@infradead.org header.s=desiato.20200630 header.b=hUjKj3vU; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id kx5-20020a170907774500b00787d0dfe70csi737453ejc.981.2022.10.27.02.40.26; Thu, 27 Oct 2022 02:40:50 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@infradead.org header.s=desiato.20200630 header.b=hUjKj3vU; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S235209AbiJ0J3u (ORCPT <rfc822;chrisfriedt@gmail.com> + 99 others); Thu, 27 Oct 2022 05:29:50 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:35118 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S235002AbiJ0J3o (ORCPT <rfc822;linux-kernel@vger.kernel.org>); Thu, 27 Oct 2022 05:29:44 -0400 Received: from desiato.infradead.org (desiato.infradead.org [IPv6:2001:8b0:10b:1:d65d:64ff:fe57:4e05]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id DE64CBE0E for <linux-kernel@vger.kernel.org>; Thu, 27 Oct 2022 02:29:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=desiato.20200630; h=Subject:Cc:To:From:Date:Message-ID: Sender:Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding: Content-ID:Content-Description:In-Reply-To:References; bh=+JOutcbc7GRNl3P9qo6jvKuTc9hJH1Pdy+f0Fv335qI=; b=hUjKj3vUBHXs45hGHA0eEjLhKl IilLhQ5QAquUr6DXH2TSyxYiu/ZilXpB2w3N1MCJxHch5EL0x5TWZaNyvRtbEwZn1dWeqjZ/jZy49 BD/6gnklVlXifHMmemqX9WyIz6gtMnrx5RLRlz4CGjlRg0gmzpk1s3OjSBKsgCxN17CA+2cZ+5pPR iIMddJg8e2xLfSa//vEe4jv+Dvl257n5G+8ZAfGO07dEYzMkVAoclC/YBFnXPKvHsEjR7b559Ff1X T5yHzaG+7pOG8etDIRBQRVJkrmBeF8mfRv34POsOlRAlE2HJs4fhhui03HWd217/CgF9obx56p3ZI pmqlL3ww==; Received: from j130084.upc-j.chello.nl ([24.132.130.84] helo=noisy.programming.kicks-ass.net) by desiato.infradead.org with esmtpsa (Exim 4.94.2 #2 (Red Hat Linux)) id 1onzCd-006p4K-2S; Thu, 27 Oct 2022 09:29:31 +0000 Received: from hirez.programming.kicks-ass.net (hirez.programming.kicks-ass.net [192.168.1.225]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by noisy.programming.kicks-ass.net (Postfix) with ESMTPS id 8C23230035C; Thu, 27 Oct 2022 11:29:30 +0200 (CEST) Received: by hirez.programming.kicks-ass.net (Postfix, from userid 0) id 67C452C450396; Thu, 27 Oct 2022 11:29:30 +0200 (CEST) Message-ID: <20221027092812.185993858@infradead.org> User-Agent: quilt/0.66 Date: Thu, 27 Oct 2022 11:28:12 +0200 From: Peter Zijlstra <peterz@infradead.org> To: x86@kernel.org Cc: linux-kernel@vger.kernel.org, peterz@infradead.org, Kees Cook <keescook@chromium.org>, Sami Tolvanen <samitolvanen@google.com>, Joao Moreira <joao@overdrivepizza.com>, Josh Poimboeuf <jpoimboe@redhat.com>, Mark Rutland <mark.rutland@arm.com> Subject: [PATCH 0/4] x86/ibt: Implement FineIBT X-Spam-Status: No, score=-4.4 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_MED,SPF_HELO_NONE, SPF_NONE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: <linux-kernel.vger.kernel.org> X-Mailing-List: linux-kernel@vger.kernel.org X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?= X-GMAIL-THRID: =?utf-8?q?1747833219457383404?= X-GMAIL-MSGID: =?utf-8?q?1747833219457383404?= |
Series | x86/ibt: Implement FineIBT | |
Message
Peter Zijlstra
Oct. 27, 2022, 9:28 a.m. UTC
Hi all, Updated FineIBT series; I've (hopefully) incorporated all feedback from last time with the notable exception of the Kconfig CFI default -- I'm not sure we want to add to the Kconfig space for this, also what would a distro do with it. Anyway; please have a look, I'm hoping to merge this soonish so we can make the next cycle.
Comments
From: Peter Zijlstra > Sent: 27 October 2022 10:28 > > Hi all, > > Updated FineIBT series; I've (hopefully) incorporated all feedback from last > time with the notable exception of the Kconfig CFI default -- I'm not sure we > want to add to the Kconfig space for this, also what would a distro do with it. > > Anyway; please have a look, I'm hoping to merge this soonish so we can make the > next cycle. Is there a test to ensure that modules are actually compiled with the required endbra, function prologue gap (etc). Having the module load fail is somewhat better than a crash. It is almost certainly quite easy to generate an out of tree module that is missing all of those (even if compiled at the same time as the kernel). (Never mind issues with modules that contain binary blobs.) David - Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK Registration No: 1397386 (Wales)
On Fri, Oct 28, 2022 at 11:01:08AM +0000, David Laight wrote: > From: Peter Zijlstra > > Sent: 27 October 2022 10:28 > > > > Hi all, > > > > Updated FineIBT series; I've (hopefully) incorporated all feedback from last > > time with the notable exception of the Kconfig CFI default -- I'm not sure we > > want to add to the Kconfig space for this, also what would a distro do with it. > > > > Anyway; please have a look, I'm hoping to merge this soonish so we can make the > > next cycle. > > Is there a test to ensure that modules are actually compiled > with the required endbra, function prologue gap (etc). > Having the module load fail is somewhat better than a crash. > > It is almost certainly quite easy to generate an out of tree module that > is missing all of those (even if compiled at the same time as the kernel). > (Never mind issues with modules that contain binary blobs.) There is not; it is always possible to load a 'malformed' module. We have no sanity checking on modules. It is no different from any other binary compatilibity issue; if you build a dud module, you get to keep the pieces.