On Mon, 14 Oct 2024 at 22:59, Kees Cook <kees@xxxxxxxxxx> wrote: > > On Wed, Oct 09, 2024 at 02:43:53PM +0200, Ard Biesheuvel wrote: > > However, if a non-TLS definition of the symbol in question is visible in > > the same compilation unit (which amounts to the whole of vmlinux if LTO > > is enabled), it will drop the per-CPU prefix and emit a load from a > > bogus address. > > I take this to mean that x86 32-bit kernels built with the stack > protector and using Clang LTO will crash very quickly? > Yeah. The linked issue is not quite clear, but it does suggest things are pretty broken in that case.
