| Message ID | 20221027092812.185993858@infradead.org |
|---|---|
| Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:a5d:6687:0:0:0:0:0 with SMTP id l7csp129884wru;
Thu, 27 Oct 2022 02:40:50 -0700 (PDT)
X-Google-Smtp-Source:
AMsMyM6lntEdUWUjDgPOGZYKVnTtRI+fU4J/CgNoobtUZxnX1SrfNLNy/sHFopQik00rQzO9SIKt
X-Received: by 2002:aa7:c04f:0:b0:457:1b08:d056 with SMTP id
k15-20020aa7c04f000000b004571b08d056mr46505583edo.146.1666863650694;
Thu, 27 Oct 2022 02:40:50 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1666863650; cv=none;
d=google.com; s=arc-20160816;
b=IpiOyfUmbqBRr0EBL6qHuxmOcuwjO9nWl8zV4KxL3wxJidX4mpSrSic7L4ePnvh6nx
NIS+R/K2yEkT6i0cPIxU8ZkGQLrR3LeVBzq+Kv1aBisYD4WHX/f19+RMCz7FUJdkNyrK
JRFUybOdERhy/zjyHloxrIe8SJ1YEJEcDu/2EZjBHiGlFTGnYzfxHJFsrv4adWYdIcXS
130K3KYlf+7Pkx1AoXTWRfF8/VtM6Khk/AkWvA4JtTHEvF14PGySq4DvqDkL/rJJ70C5
GHBPovEmAGSxcFVqQqGPH9AN635onAheGiVuIxvTcRAczb2yfRLd1Pb6kI+X/Fh4uyNR
xxOg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=list-id:precedence:subject:cc:to:from:date:user-agent:message-id
:dkim-signature;
bh=+JOutcbc7GRNl3P9qo6jvKuTc9hJH1Pdy+f0Fv335qI=;
b=qsPdyh1qCEtqk4b4h1IvyKFp9Jx6lM6QkjpIbRnBQoKYTtUq/5hVVhezCHAZhhev58
dnCSyPiFOvXtn53imINWYxEvyUMpGEcXEA4nJWXQ8CKmlVwop77JbbrDgacJfu1QpX+r
o6A7uUYeXXDlkH6EFWB0SDy0wVbS9M+f9h+k6F6APdG2lXAbv1ltsy5wOm3UZb1u0tFc
7qqBMW6eTG7OAb1yhozcuSPXV9JC4dlUGRIp/K5MnnR7f93Jxa9LnO7hW4HH/1qMWmkh
aSZvFgbdTOP/nuWW1Nke5NdRfXyfOKYHX+SgW5qnrr8RCfXzkeD3bEKFjOlfo1sywE3z
svPw==
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i=@infradead.org header.s=desiato.20200630
header.b=hUjKj3vU;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
by mx.google.com with ESMTP id
kx5-20020a170907774500b00787d0dfe70csi737453ejc.981.2022.10.27.02.40.26;
Thu, 27 Oct 2022 02:40:50 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
dkim=pass header.i=@infradead.org header.s=desiato.20200630
header.b=hUjKj3vU;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
id S235209AbiJ0J3u (ORCPT <rfc822;chrisfriedt@gmail.com>
+ 99 others); Thu, 27 Oct 2022 05:29:50 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:35118 "EHLO
lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
with ESMTP id S235002AbiJ0J3o (ORCPT
<rfc822;linux-kernel@vger.kernel.org>);
Thu, 27 Oct 2022 05:29:44 -0400
Received: from desiato.infradead.org (desiato.infradead.org
[IPv6:2001:8b0:10b:1:d65d:64ff:fe57:4e05])
by lindbergh.monkeyblade.net (Postfix) with ESMTPS id DE64CBE0E
for <linux-kernel@vger.kernel.org>;
Thu, 27 Oct 2022 02:29:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
d=infradead.org; s=desiato.20200630;
h=Subject:Cc:To:From:Date:Message-ID:
Sender:Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:
Content-ID:Content-Description:In-Reply-To:References;
bh=+JOutcbc7GRNl3P9qo6jvKuTc9hJH1Pdy+f0Fv335qI=;
b=hUjKj3vUBHXs45hGHA0eEjLhKl
IilLhQ5QAquUr6DXH2TSyxYiu/ZilXpB2w3N1MCJxHch5EL0x5TWZaNyvRtbEwZn1dWeqjZ/jZy49
BD/6gnklVlXifHMmemqX9WyIz6gtMnrx5RLRlz4CGjlRg0gmzpk1s3OjSBKsgCxN17CA+2cZ+5pPR
iIMddJg8e2xLfSa//vEe4jv+Dvl257n5G+8ZAfGO07dEYzMkVAoclC/YBFnXPKvHsEjR7b559Ff1X
T5yHzaG+7pOG8etDIRBQRVJkrmBeF8mfRv34POsOlRAlE2HJs4fhhui03HWd217/CgF9obx56p3ZI
pmqlL3ww==;
Received: from j130084.upc-j.chello.nl ([24.132.130.84]
helo=noisy.programming.kicks-ass.net)
by desiato.infradead.org with esmtpsa (Exim 4.94.2 #2 (Red Hat Linux))
id 1onzCd-006p4K-2S; Thu, 27 Oct 2022 09:29:31 +0000
Received: from hirez.programming.kicks-ass.net
(hirez.programming.kicks-ass.net [192.168.1.225])
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature RSA-PSS (4096 bits)
server-digest SHA256)
(Client did not present a certificate)
by noisy.programming.kicks-ass.net (Postfix) with ESMTPS id
8C23230035C;
Thu, 27 Oct 2022 11:29:30 +0200 (CEST)
Received: by hirez.programming.kicks-ass.net (Postfix, from userid 0)
id 67C452C450396; Thu, 27 Oct 2022 11:29:30 +0200 (CEST)
Message-ID: <20221027092812.185993858@infradead.org>
User-Agent: quilt/0.66
Date: Thu, 27 Oct 2022 11:28:12 +0200
From: Peter Zijlstra <peterz@infradead.org>
To: x86@kernel.org
Cc: linux-kernel@vger.kernel.org, peterz@infradead.org,
Kees Cook <keescook@chromium.org>,
Sami Tolvanen <samitolvanen@google.com>,
Joao Moreira <joao@overdrivepizza.com>,
Josh Poimboeuf <jpoimboe@redhat.com>,
Mark Rutland <mark.rutland@arm.com>
Subject: [PATCH 0/4] x86/ibt: Implement FineIBT
X-Spam-Status: No, score=-4.4 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_MED,SPF_HELO_NONE,
SPF_NONE autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?=
X-GMAIL-THRID: =?utf-8?q?1747833219457383404?=
X-GMAIL-MSGID: =?utf-8?q?1747833219457383404?=
|
| Series | x86/ibt: Implement FineIBT | |
Message
Peter Zijlstra
Oct. 27, 2022, 9:28 a.m. UTC
Hi all, Updated FineIBT series; I've (hopefully) incorporated all feedback from last time with the notable exception of the Kconfig CFI default -- I'm not sure we want to add to the Kconfig space for this, also what would a distro do with it. Anyway; please have a look, I'm hoping to merge this soonish so we can make the next cycle.
Comments
From: Peter Zijlstra > Sent: 27 October 2022 10:28 > > Hi all, > > Updated FineIBT series; I've (hopefully) incorporated all feedback from last > time with the notable exception of the Kconfig CFI default -- I'm not sure we > want to add to the Kconfig space for this, also what would a distro do with it. > > Anyway; please have a look, I'm hoping to merge this soonish so we can make the > next cycle. Is there a test to ensure that modules are actually compiled with the required endbra, function prologue gap (etc). Having the module load fail is somewhat better than a crash. It is almost certainly quite easy to generate an out of tree module that is missing all of those (even if compiled at the same time as the kernel). (Never mind issues with modules that contain binary blobs.) David - Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK Registration No: 1397386 (Wales)
On Fri, Oct 28, 2022 at 11:01:08AM +0000, David Laight wrote: > From: Peter Zijlstra > > Sent: 27 October 2022 10:28 > > > > Hi all, > > > > Updated FineIBT series; I've (hopefully) incorporated all feedback from last > > time with the notable exception of the Kconfig CFI default -- I'm not sure we > > want to add to the Kconfig space for this, also what would a distro do with it. > > > > Anyway; please have a look, I'm hoping to merge this soonish so we can make the > > next cycle. > > Is there a test to ensure that modules are actually compiled > with the required endbra, function prologue gap (etc). > Having the module load fail is somewhat better than a crash. > > It is almost certainly quite easy to generate an out of tree module that > is missing all of those (even if compiled at the same time as the kernel). > (Never mind issues with modules that contain binary blobs.) There is not; it is always possible to load a 'malformed' module. We have no sanity checking on modules. It is no different from any other binary compatilibity issue; if you build a dud module, you get to keep the pieces.