Re: [PATCH v19 00/27] riscv control-flow integrity for usermode

From: Florian Weimer <hidden>
Date: 2025-09-30 09:20:57
Also in: linux-arch, linux-devicetree, linux-doc, linux-fsdevel, linux-kselftest, linux-mm, linux-riscv, lkml

Possibly related (same subject, not in this thread)

2025-10-13 · Re: [PATCH v19 00/27] riscv control-flow integrity for usermode · Florian Weimer <hidden>
2025-10-02 · Re: [PATCH v19 00/27] riscv control-flow integrity for usermode · Deepak Gupta <hidden>
2025-10-02 · Re: [PATCH v19 00/27] riscv control-flow integrity for usermode · Florian Weimer <hidden>
2025-10-01 · Re: [PATCH v19 00/27] riscv control-flow integrity for usermode · Deepak Gupta <hidden>
2025-09-30 · Re: [PATCH v19 00/27] riscv control-flow integrity for usermode · Florian Weimer <hidden>

* Deepak Gupta:

In case of shadow stack, it similar situation. If enabled compiler
decides to insert sspush and sspopchk. They necessarily won't be
prologue or epilogue but somewhere in function body as deemed fit by
compiler, thus increasing the complexity of runtime patching.

More so, here are wishing for kernel to do this patching for usermode
vDSO when there is no guarantee of such of rest of usermode (which if
was compiled with shadow stack would have faulted before vDSO's
sspush/sspopchk if ran on pre-zimop hardware)

I think this capability is desirable so that you can use a distribution
kernel during CFI userspace bringup.

Thanks,
Florian

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help