Re: [PATCH v2 01/39] Documentation/x86: Add CET description

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "fweimer@xxxxxxxxxx" <fweimer@xxxxxxxxxx>
Subject: Re: [PATCH v2 01/39] Documentation/x86: Add CET description
From: "Edgecombe, Rick P" <rick.p.edgecombe@xxxxxxxxx>
Date: Wed, 26 Oct 2022 21:59:27 +0000
Accept-language: en-US
Cc: "bsingharora@xxxxxxxxx" <bsingharora@xxxxxxxxx>, "hpa@xxxxxxxxx" <hpa@xxxxxxxxx>, "Syromiatnikov, Eugene" <esyr@xxxxxxxxxx>, "peterz@xxxxxxxxxxxxx" <peterz@xxxxxxxxxxxxx>, "rdunlap@xxxxxxxxxxxxx" <rdunlap@xxxxxxxxxxxxx>, "keescook@xxxxxxxxxxxx" <keescook@xxxxxxxxxxxx>, "Yu, Yu-cheng" <yu-cheng.yu@xxxxxxxxx>, "Eranian, Stephane" <eranian@xxxxxxxxxx>, "kirill.shutemov@xxxxxxxxxxxxxxx" <kirill.shutemov@xxxxxxxxxxxxxxx>, "dave.hansen@xxxxxxxxxxxxxxx" <dave.hansen@xxxxxxxxxxxxxxx>, "linux-mm@xxxxxxxxx" <linux-mm@xxxxxxxxx>, "nadav.amit@xxxxxxxxx" <nadav.amit@xxxxxxxxx>, "jannh@xxxxxxxxxx" <jannh@xxxxxxxxxx>, "dethoma@xxxxxxxxxxxxx" <dethoma@xxxxxxxxxxxxx>, "kcc@xxxxxxxxxx" <kcc@xxxxxxxxxx>, "linux-arch@xxxxxxxxxxxxxxx" <linux-arch@xxxxxxxxxxxxxxx>, "bp@xxxxxxxxx" <bp@xxxxxxxxx>, "oleg@xxxxxxxxxx" <oleg@xxxxxxxxxx>, "hjl.tools@xxxxxxxxx" <hjl.tools@xxxxxxxxx>, "Yang, Weijiang" <weijiang.yang@xxxxxxxxx>, "Lutomirski, Andy" <luto@xxxxxxxxxx>, "jamorris@xxxxxxxxxxxxxxxxxxx" <jamorris@xxxxxxxxxxxxxxxxxxx>, "arnd@xxxxxxxx" <arnd@xxxxxxxx>, "Moreira, Joao" <joao.moreira@xxxxxxxxx>, "tglx@xxxxxxxxxxxxx" <tglx@xxxxxxxxxxxxx>, "pavel@xxxxxx" <pavel@xxxxxx>, "mike.kravetz@xxxxxxxxxx" <mike.kravetz@xxxxxxxxxx>, "x86@xxxxxxxxxx" <x86@xxxxxxxxxx>, "linux-doc@xxxxxxxxxxxxxxx" <linux-doc@xxxxxxxxxxxxxxx>, "rppt@xxxxxxxxxx" <rppt@xxxxxxxxxx>, "john.allen@xxxxxxx" <john.allen@xxxxxxx>, "mingo@xxxxxxxxxx" <mingo@xxxxxxxxxx>, "Shankar, Ravi V" <ravi.v.shankar@xxxxxxxxx>, "corbet@xxxxxxx" <corbet@xxxxxxx>, "linux-kernel@xxxxxxxxxxxxxxx" <linux-kernel@xxxxxxxxxxxxxxx>, "linux-api@xxxxxxxxxxxxxxx" <linux-api@xxxxxxxxxxxxxxx>, "gorcunov@xxxxxxxxx" <gorcunov@xxxxxxxxx>
In-reply-to: <cc1838888e9da64415331e6f7d83965b553daae7.camel@intel.com>
References: <20220929222936.14584-1-rick.p.edgecombe@intel.com> <20220929222936.14584-2-rick.p.edgecombe@intel.com> <87ilkr27nv.fsf@oldenburg.str.redhat.com> <62481017bc02b35587dd520ed446a011641aa390.camel@intel.com> <87v8opz0me.fsf@oldenburg.str.redhat.com> <cc1838888e9da64415331e6f7d83965b553daae7.camel@intel.com>
Thread-index: AQHY1FL/9ZOrfh44YkS3ARV6MT/4g64HnGzRgABKE4CAAt11coACKNeAgBR2/AA=
Thread-topic: [PATCH v2 01/39] Documentation/x86: Add CET description

On Thu, 2022-10-13 at 14:28 -0700, Rick Edgecombe wrote:
> In the meantime we could have a new bit shstk_strict,
> that requests behavior like these patches implement, and kills the
> process on violation. Glibc/tools could add support for this strict
> bit
> and anyone that wants to more carefully compile with it could finally
> get shadow stack today. Then the implementation of the warn and
> continue mode could follow that, and glibc could map the original
> shstk
> bit to that kernel mode. So the old binaries would get there
> eventually, which is better than the continuing nothing they have
> today.

Hi,

Any thoughts on this proposal?

Thanks,

Rick

References:
- [PATCH v2 00/39] Shadowstacks for userspace
  - From: Rick Edgecombe
- [PATCH v2 01/39] Documentation/x86: Add CET description
  - From: Rick Edgecombe
- Re: [PATCH v2 01/39] Documentation/x86: Add CET description
  - From: Florian Weimer
- Re: [PATCH v2 01/39] Documentation/x86: Add CET description
  - From: Edgecombe, Rick P
- Re: [PATCH v2 01/39] Documentation/x86: Add CET description
  - From: Florian Weimer
- Re: [PATCH v2 01/39] Documentation/x86: Add CET description
  - From: Edgecombe, Rick P

Prev by Date: Re: [PATCH v9 7/8] KVM: Handle page fault for private memory
Next by Date: [PATCH 0/3] bitmap: optimize small_const path for
Previous by thread: Re: [PATCH v2 01/39] Documentation/x86: Add CET description
Next by thread: [PATCH v2 02/39] x86/cet/shstk: Add Kconfig option for Shadow Stack
Index(es):
- Date
- Thread

[Index of Archives] [Linux Kernel] [Kernel Newbies] [x86 Platform Driver] [Netdev] [Linux Wireless] [Netfilter] [Bugtraq] [Linux Filesystems] [Yosemite Discussion] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Device Mapper]