Re: [RFC] Circumventing FineIBT Via Entrypoints

From: Peter Zijlstra
Date: Fri Feb 14 2025 - 05:05:57 EST

Next message: Stephen Rothwell: "linux-next: Tree for Feb 14"
Previous message: Aditya Garg: "[PATCH v2 1/4] HID: apple: Use common table for MacBook Pro fn mapping"
In reply to: Peter Zijlstra: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Next in thread: Peter Zijlstra: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Feb 13, 2025 at 08:41:16PM +0000, Andrew Cooper wrote:

> The problem is that SYSCALL entry/exit is a toxic operating mode,
> because you only have to think about sneezing and another user->kernel
> priv-esc appears.

For a very brief moment I thought we could leave out the ENDBR there and
eat the #CP, but 1) slow, and 2) then #CP needs to be an IST and ARGHH.

So yeah, I didn't just suggest anything at all.

I hate all this.

Next message: Stephen Rothwell: "linux-next: Tree for Feb 14"
Previous message: Aditya Garg: "[PATCH v2 1/4] HID: apple: Use common table for MacBook Pro fn mapping"
In reply to: Peter Zijlstra: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Next in thread: Peter Zijlstra: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]