Re: [PATCH] retpoline/module: Taint kernel for missing retpoline in module

From: Andi Kleen
Date: Mon Jan 15 2018 - 11:48:19 EST

Next message: Joel Stanley: "Re: [PATCH] clk: aspeed: Handle inverse polarity of USB port 1 clock gate"
Previous message: Rafael J. Wysocki: "Re: [PATCH v2] PCI/ACPI: Disable AER when _OSC control bit is clear."
In reply to: David Laight: "RE: [PATCH] retpoline/module: Taint kernel for missing retpoline in module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> It is not unlikely that most of a module's code is released as a
> binary 'blob', with only the part that needs to match the kernel ABI
> compiled on the target system.

Yes that is true. However such blob build systems are usually
done with custom Makefiles, not Kbuild, and those Makefiles don't set
-DRETPOLINE, so it would still be caught.

Now if someone sets -DRETPOLINE on a blob build it wouldn't warn,
but that would be actively malicious and there's no way to protect
against that.

It's merely aimed at detecting mistakes.

-Andi

Next message: Joel Stanley: "Re: [PATCH] clk: aspeed: Handle inverse polarity of USB port 1 clock gate"
Previous message: Rafael J. Wysocki: "Re: [PATCH v2] PCI/ACPI: Disable AER when _OSC control bit is clear."
In reply to: David Laight: "RE: [PATCH] retpoline/module: Taint kernel for missing retpoline in module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]