Re: [PATCH] static_call,x86: Robustify trampoline patching

From: Peter Zijlstra
Date: Sun Oct 31 2021 - 16:12:24 EST

Next message: Pavel Skripkin: "Re: [syzbot] KASAN: slab-out-of-bounds Read in hci_le_meta_evt (2)"
Previous message: Andy Shevchenko: "Re: [RFC 3/5] gpiolib: acpi: Add a new "ignore" module option"
In reply to: Ard Biesheuvel: "Re: [PATCH] static_call,x86: Robustify trampoline patching"
Next in thread: Ard Biesheuvel: "Re: [PATCH] static_call,x86: Robustify trampoline patching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Oct 31, 2021 at 05:44:04PM +0100, Ard Biesheuvel wrote:

> > Is is also a terriblly gross hack. I really want the clang-cfi stuff to
> > improve, not add layers of hacks on top of it.
>
> I'm just as annoyed as you are about the apparent need for this.
> However, emitting an alias at build time is far better IMHO than
> adding a magic byte sequence and having to check it at runtime.

Oh, I'm keeping that magic sequence :-) That's hardening in general, and
I don't want to ever want to debug a wrong poke like that again.

Adding an extra label fixes this thing, but there's still the other
cases where we need/want/desire a *real* function pointer.

I'm very close to saying that anything that mucks up function pointers
like this is a complete non-starter. Let's start re-start this whole CFI
endeavour from the start.

Next message: Pavel Skripkin: "Re: [syzbot] KASAN: slab-out-of-bounds Read in hci_le_meta_evt (2)"
Previous message: Andy Shevchenko: "Re: [RFC 3/5] gpiolib: acpi: Add a new "ignore" module option"
In reply to: Ard Biesheuvel: "Re: [PATCH] static_call,x86: Robustify trampoline patching"
Next in thread: Ard Biesheuvel: "Re: [PATCH] static_call,x86: Robustify trampoline patching"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]