Re: [RFC 37/37] fs/binfmt_elf: Block old shstk elf bit

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Sun, 2022-11-06 at 10:33 +0100, Florian Weimer wrote:
> * H. J. Lu:
> 
> > This change doesn't make a binary CET compatible.  It just requires
> > that the toolchain must be updated and all binaries have to be
> > recompiled with the new toolchain to enable CET.  It doesn't solve
> > any
> > issue which can't be solved by not updating glibc.
> 
> Right, and it doesn't even address the library case (the kernel would
> have to hook into mmap for that).  The kernel shouldn't do this.

Shadow stack shouldn't enable as a result of loading a library, if
that's what you mean.




[Index of Archives]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Linux FS]     [Yosemite Forum]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]     [Linux Resources]

  Powered by Linux