On Fri, 2022-11-04 at 15:56 -0700, H.J. Lu wrote: > This change doesn't make a binary CET compatible. It just requires > that the toolchain > must be updated and all binaries have to be recompiled with the new > toolchain to > enable CET. I guess you mean distros could again blindly mark all binaries as supporting shadow stack? I think they would see the failures pretty quickly in this case, unlike the first time where there was little HW and no kernel support. > It doesn't solve any issue which can't be solved by not > updating glibc. If users never updates glibc, there won't be a problem, as I elaborated on in the coverletter. But how are they supposed to know the consequences of turning on CET?
