Re: [RFC] Circumventing FineIBT Via Entrypoints

From: Peter Zijlstra
Date: Mon Feb 17 2025 - 13:54:59 EST

Next message: Nathan Chancellor: "Re: [PATCH v2] kbuild: userprogs: use correct lld when linking through clang"
Previous message: Aditya Garg: "[PATCH 2/2] drm/tiny: add driver for Apple Touch Bars in x86 Macs"
In reply to: David Laight: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Next in thread: Rudolf Marek: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Feb 17, 2025 at 06:38:27PM +0000, David Laight wrote:

> I may not have retpolines enabled, a typical call site is (from vmlinux.o):

Make sure CONFIG_FINEIBT=y, otherwise there is no point in talking about
this. This requires KERNEL_IBT=y RETPOLINE=y CALL_PADDING=y CFI_CLANG=y.

Then look at arch/x86/include/asm/cfi.h and make sure to read the
comment, and then read arch/x86/kernel/alternative.c:__apply_fineibt().

Which ever way around you're going to turn this, you'll never find the
fineibt code in the object files.

Next message: Nathan Chancellor: "Re: [PATCH v2] kbuild: userprogs: use correct lld when linking through clang"
Previous message: Aditya Garg: "[PATCH 2/2] drm/tiny: add driver for Apple Touch Bars in x86 Macs"
In reply to: David Laight: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Next in thread: Rudolf Marek: "Re: [RFC] Circumventing FineIBT Via Entrypoints"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]