Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit

From: Edgecombe, Rick P
Date: Mon Nov 07 2022 - 11:50:15 EST

Next message: SeongJae Park: "[PATCH v2 0/2] Fix slab-out-of-bounds Write in dbgfs_rm_context_write"
Previous message: Edgecombe, Rick P: "Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit"
In reply to: Florian Weimer: "Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit"
Next in thread: Florian Weimer: "Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 2022-11-06 at 10:33 +0100, Florian Weimer wrote:
> * H. J. Lu:
>
> > This change doesn't make a binary CET compatible. It just requires
> > that the toolchain must be updated and all binaries have to be
> > recompiled with the new toolchain to enable CET. It doesn't solve
> > any
> > issue which can't be solved by not updating glibc.
>
> Right, and it doesn't even address the library case (the kernel would
> have to hook into mmap for that). The kernel shouldn't do this.

Shadow stack shouldn't enable as a result of loading a library, if
that's what you mean.

Next message: SeongJae Park: "[PATCH v2 0/2] Fix slab-out-of-bounds Write in dbgfs_rm_context_write"
Previous message: Edgecombe, Rick P: "Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit"
In reply to: Florian Weimer: "Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit"
Next in thread: Florian Weimer: "Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]