Re: [PATCH v3] retpoline: Add retpoline tag to VERMAGIC

From: Greg KH
Date: Wed Jan 17 2018 - 00:11:30 EST

Next message: Kishon Vijay Abraham I: "Re: [PATCH v2 1/2] phy: brcm-sata: Implement calibrate callback"
Previous message: Greg KH: "Re: KVM: Fix stack-out-of-bounds read in write_mmio"
In reply to: Thomas Gleixner: "Re: [PATCH v3] retpoline: Add retpoline tag to VERMAGIC"
Next in thread: tip-bot for Andi Kleen: "[tip:x86/pti] module: Add retpoline tag to VERMAGIC"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jan 16, 2018 at 12:52:28PM -0800, Andi Kleen wrote:
> From: Andi Kleen <ak@xxxxxxxxxxxxxxx>
>
> Add a marker for retpoline to the module VERMAGIC. This catches
> the case when a non RETPOLINE compiled module gets loaded into
> a retpoline kernel, making it insecure.
>
> It doesn't handle the case when retpoline has been runtime disabled.
> Even in this case the match of the retcompile status will be enforced.
> This implies that even with retpoline run time disabled all modules
> loaded need to be recompiled.
>
> This supersedes an earlier patch that did the same checking using
> a new module tag (so it's really a v3)
>
> Signed-off-by: Andi Kleen <ak@xxxxxxxxxxxxxxx>

Reviewed-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>

Next message: Kishon Vijay Abraham I: "Re: [PATCH v2 1/2] phy: brcm-sata: Implement calibrate callback"
Previous message: Greg KH: "Re: KVM: Fix stack-out-of-bounds read in write_mmio"
In reply to: Thomas Gleixner: "Re: [PATCH v3] retpoline: Add retpoline tag to VERMAGIC"
Next in thread: tip-bot for Andi Kleen: "[tip:x86/pti] module: Add retpoline tag to VERMAGIC"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]