Make SCS and PAC selectable at runtime #168
Assignees
Labels
[ARCH] arm64
Needed on the 64-bit ARM architecture (ARCH=arm64)
enhancement
New feature or request
[Feature] CFI
Involves Control Flow Integrity
Comments
kees
added
enhancement
|
RFCv2 sent to the list https://lore.kernel.org/linux-arm-kernel/20220505161011.1801596-1-ardb@kernel.org/ This version is Clang only for the moment, as GCC has a DWARF generation issue where the CFI annotation is emitted for the wrong instruction. Other than that, the implementation is mostly complete, in the sense that it applies to both the core kernel and loadable modules, and that it checks PAC/BTI h/w support first, and gives up if either is supported (PAC makes SCS redundant, and BTI conflicts with code patching, as the PACIASP instruction is also a landing pad, and therefore needs to be retained) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Not all arm64 devices support PAC, so for a distro or GKI kernel, there needs to be a way to dynamically select SCS or PAC at runtime so there is no redundant work happening in the PAC case.
objtoolappears to be overkill for finding all the PAC/SCS instrumentation points, so a better approach is needed:https://lore.kernel.org/lkml/CAMj1kXF31FxCTbo4M8MX0aaegaq7AQXMUdCtsm6xrKUFSpkzjA@mail.gmail.com/
The text was updated successfully, but these errors were encountered: