Re: [PATCH] retpoline/module: Taint kernel for missing retpoline in module

From: Andi Kleen
Date: Sat Jan 13 2018 - 13:21:05 EST

Next message: Dan Williams: "[PATCH v3 0/9] core, x86: prevent bounds-check bypass via speculative execution"
Previous message: Greg KH: "Re: [PATCH 4.9] x86/pti/efi: broken conversion from efi to kernel page table"
In reply to: Greg KH: "Re: [PATCH] retpoline/module: Taint kernel for missing retpoline in module"
Next in thread: David Laight: "RE: [PATCH] retpoline/module: Taint kernel for missing retpoline in module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > Also what's the point of putting this information into every symbol?
>
> It makes it easy to check :)

Easier than nm?

Per symbol still doesn't make any sense to me.

>
> > Once per module is good enough.
> >
> > We already have similar checks for staging etc.
>
> Sure, but this is more of a "Hey, your version of GCC is doing something
> different than what you built the kernel with, watch out!" which is much
> more generic and good to know. A whole taint for one CPU bug type seems
> overkill to me.

I removed the taint in version 2, posted yesterday. It now just prints
the warning and resets the vulnerability reporting in sysfs.

-Andi

Next message: Dan Williams: "[PATCH v3 0/9] core, x86: prevent bounds-check bypass via speculative execution"
Previous message: Greg KH: "Re: [PATCH 4.9] x86/pti/efi: broken conversion from efi to kernel page table"
In reply to: Greg KH: "Re: [PATCH] retpoline/module: Taint kernel for missing retpoline in module"
Next in thread: David Laight: "RE: [PATCH] retpoline/module: Taint kernel for missing retpoline in module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]