On 03/02/2023 12:55, Ard Biesheuvel wrote:
Question: as a producer of externally loaded UEFI binaries (e.g.
ipxe.efi): what would I need to do to take advantage of BTI?
I'm assuming:
- enable -mbranch-protection=bti in my builds (easy)
- wait for PE/COFF specification change and then update my produced
images to include whatever flag gets decided upon.
Is that correct?
First of all, in case you missed this, the series in question only
covers runtime DXE drivers, i.e., the code that persists after
ExitBootServices() and gets mapped by the OS and called to access the
variable store. So iPXE should not be affected at all by these
changes.
I was not paying close attention to this patch series and had missed
that detail: thank you for clarifying.
So to answer your question: yes.
Thank you!
Michael
-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#99581): https://edk2.groups.io/g/devel/message/99581
Mute This Topic: https://groups.io/mt/96721191/21656
Group Owner: devel+ow...@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-
