Re: [PATCH v3 2/2] rust: add flags for shadow call stack sanitizer

From: Sami Tolvanen
Date: Mon Jul 08 2024 - 20:10:55 EST

Next message: T.J. Mercier: "Re: [RFC PATCH 0/4] Introduce PMC(PER-MEMCG-CACHE)"
Previous message: Sean Christopherson: "Re: [PATCH v2 40/49] KVM: x86: Initialize guest cpu_caps based on KVM support"
Next in thread: Alice Ryhl: "Re: [PATCH v3 2/2] rust: add flags for shadow call stack sanitizer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jul 4, 2024 at 10:17 AM Conor Dooley <conor@xxxxxxxxxx> wrote:
>
> For these security related options, like CFI_CLANG or RANDSTRUCT, I'm
> inclined to say that RUST is actually what should grow the depends on.
> That way it'll be RUST that gets silently disabled in configs when patch
> 1 gets backported (where it is mostly useless anyway) rather than SCS
> nor will it disable SCS when someone enables RUST in their config,
> instead it'd be a conscious choice.

I agree, we shouldn't silently disable hardening features when Rust is enabled.

Sami

Next message: T.J. Mercier: "Re: [RFC PATCH 0/4] Introduce PMC(PER-MEMCG-CACHE)"
Previous message: Sean Christopherson: "Re: [PATCH v2 40/49] KVM: x86: Initialize guest cpu_caps based on KVM support"
Next in thread: Alice Ryhl: "Re: [PATCH v3 2/2] rust: add flags for shadow call stack sanitizer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]