On Wed, Oct 09, 2024 at 02:43:53PM +0200, Ard Biesheuvel wrote: > However, if a non-TLS definition of the symbol in question is visible in > the same compilation unit (which amounts to the whole of vmlinux if LTO > is enabled), it will drop the per-CPU prefix and emit a load from a > bogus address. I take this to mean that x86 32-bit kernels built with the stack protector and using Clang LTO will crash very quickly? -- Kees Cook
