Received: by 2002:a05:6a10:1a4d:0:0:0:0 with SMTP id nk13csp1786757pxb; Wed, 9 Feb 2022 04:36:25 -0800 (PST) X-Google-Smtp-Source: ABdhPJwgcv2iIiVcosTQKmFex3qolBaDocTY2c8XJuwcFsrlf9og3r1YXLa/MumFwt4PrnRhxm0P X-Received: by 2002:a63:ee01:: with SMTP id e1mr1741388pgi.508.1644410185191; Wed, 09 Feb 2022 04:36:25 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1644410185; cv=none; d=google.com; s=arc-20160816; b=bb0twNB+GEPPyyHPK/vI60cdKnLL/0zyHT7jgdG9TyBlxVVvjwqz4bl8t7qleDQSuY 7zmaxzSyr1RpO0XHw90pxJAZ3hlKytIF4G1ub9OW1S/RkyPv6oFO0tDIt9dI14Z1qFKF pZwZZk2CJsMemg/5XJ3CY2aUhxyHniNLClcWoSwyE0ikoYci+ZOYI2e7Sb9C2jp6T4K+ gmliylXYhN9pq+7yi852Cikvc74gYcjRBLlAo4iPAm3TMjzUZH+IO16QFcRH/mbG9MeA qMWdppnCozEuMgW+VC9IEsZpE6if9f40bxlhOVLzGWxUIyj9xqW1Luts36tcKRxgaTNG QWbg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:message-id:references :in-reply-to:subject:cc:to:from:date:mime-version; bh=cvh/iQ7rgC9YO2LHCsuwpTLi0O66d2qKTex1o1J+1fI=; b=euMQbxJtCIz8mMTlg9j4XW1hvvryvA3VfCT8PDFry3w1chdAZ5+eeU1axVljdAbS21 PF0oW0Navtl64LxSAGeZTMNbTvvkw9/LXL5v98ggDTzRWliUyAyk0yqDIpxrcWuaxURW UDLzqx2R0+1imhsmms9DR1Ux9xFe3dNtxw0wDec9d6RP4f0KDlPnHKc7hXKjsbaYisyY UC7un2mxYhjJL7a++Dcg6FcmY8PmT/Qk2Ld0HIZ1U3k8KQhz9p08pIwGdFnTvUtugVQk AGESoM0rXRa0OMyw6iM5l4ab9PaM4peTEbP26Y/h5ev1S/Zygp3OPEEw5BNauFZaccrK sGdg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net. [2620:137:e000::1:18]) by mx.google.com with ESMTPS id u186si3697919pgd.749.2022.02.09.04.36.24 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 09 Feb 2022 04:36:25 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) client-ip=2620:137:e000::1:18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id BC8EAE099846; Wed, 9 Feb 2022 02:23:31 -0800 (PST) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S233448AbiBIFYe (ORCPT + 99 others); Wed, 9 Feb 2022 00:24:34 -0500 Received: from gmail-smtp-in.l.google.com ([23.128.96.19]:45674 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S232786AbiBIFSp (ORCPT ); Wed, 9 Feb 2022 00:18:45 -0500 X-Greylist: delayed 10646 seconds by postgrey-1.37 at lindbergh.monkeyblade.net; Tue, 08 Feb 2022 21:18:48 PST Received: from relay5-d.mail.gandi.net (relay5-d.mail.gandi.net [IPv6:2001:4b98:dc4:8::225]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 202FFC03FEEE for ; Tue, 8 Feb 2022 21:18:47 -0800 (PST) Received: (Authenticated sender: joao@overdrivepizza.com) by mail.gandi.net (Postfix) with ESMTPA id 5123B1C0002; Wed, 9 Feb 2022 05:18:44 +0000 (UTC) MIME-Version: 1.0 Date: Tue, 08 Feb 2022 21:18:44 -0800 From: Joao Moreira To: Kees Cook Cc: Peter Zijlstra , x86@kernel.org, hjl.tools@gmail.com, jpoimboe@redhat.com, andrew.cooper3@citrix.com, linux-kernel@vger.kernel.org, ndesaulniers@google.com, samitolvanen@google.com, llvm@lists.linux.dev Subject: Re: [RFC][PATCH 6/6] objtool: Add IBT validation / fixups In-Reply-To: <202202082003.FA77867@keescook> References: <20211122170301.764232470@infradead.org> <20211122170805.338489412@infradead.org> <6ebb0ab131c522f20c094294d49091fc@overdrivepizza.com> <202202081541.900F9E1B@keescook> <202202082003.FA77867@keescook> Message-ID: <9ea50c51ee8db366430c9dc697a83923@overdrivepizza.com> X-Sender: joao@overdrivepizza.com Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00, HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,RDNS_NONE, SPF_HELO_NONE,T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org > Ah, excellent, thanks for the pointers. There's also this in the works: > https://reviews.llvm.org/D119296 (a new CFI mode, designed to play nice > to objtool, IBT, etc.) Oh, great! Thanks for pointing it out. I guess I saw something with a similar name before ;) https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf Jokes aside (and perhaps questions more targeted to Sami), from a diagonal look it seems that this follows the good old tag approach proposed by PaX/grsecurity, right? If this is the case, should I assume it could also benefit from features like -mibt-seal? Also are you considering that perhaps we can use alternatives to flip different CFI instrumentation as suggested by PeterZ in another thread? Tks, Joao