commit: e9ca04d0b0f60f591603f76063130b0f82920234 Author: Mike Pagano <mpagano <AT> gentoo <DOT> org> AuthorDate: Thu Apr 11 14:46:47 2024 +0000 Commit: Mike Pagano <mpagano <AT> gentoo <DOT> org> CommitDate: Thu Apr 11 14:46:47 2024 +0000 URL: https://gitweb.gentoo.org/proj/linux-patches.git/commit/?id=e9ca04d0
gcc-plugins/stackleak: Avoid .head.text section Signed-off-by: Mike Pagano <mpagano <AT> gentoo.org> 0000_README | 4 +++ ...plugins-stackleak-Avoid-head-text-section.patch | 36 ++++++++++++++++++++++ 2 files changed, 40 insertions(+) diff --git a/0000_README b/0000_README index d556a3be..a7081596 100644 --- a/0000_README +++ b/0000_README @@ -75,6 +75,10 @@ Patch: 1730_parisc-Disable-prctl.patch From: https://git.kernel.org/pub/scm/linux/kernel/git/deller/parisc-linux.git Desc: prctl: Temporarily disable prctl(PR_SET_MDWE) on parisc +Patch: 1800_gcc-plugins-stackleak-Avoid-head-text-section.patch +From: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git +Desc: gcc-plugins/stackleak: Avoid .head.text section + Patch: 2000_BT-Check-key-sizes-only-if-Secure-Simple-Pairing-enabled.patch From: https://lore.kernel.org/linux-bluetooth/[email protected]/raw Desc: Bluetooth: Check key sizes only when Secure Simple Pairing is enabled. See bug #686758 diff --git a/1800_gcc-plugins-stackleak-Avoid-head-text-section.patch b/1800_gcc-plugins-stackleak-Avoid-head-text-section.patch new file mode 100644 index 00000000..28964f01 --- /dev/null +++ b/1800_gcc-plugins-stackleak-Avoid-head-text-section.patch @@ -0,0 +1,36 @@ +From e7d24c0aa8e678f41457d1304e2091cac6fd1a2e Mon Sep 17 00:00:00 2001 +From: Ard Biesheuvel <[email protected]> +Date: Thu, 28 Mar 2024 07:42:57 +0100 +Subject: gcc-plugins/stackleak: Avoid .head.text section + +The .head.text section carries the startup code that runs with the MMU +off or with a translation of memory that deviates from the ordinary one. +So avoid instrumentation with the stackleak plugin, which already avoids +.init.text and .noinstr.text entirely. + +Fixes: 48204aba801f1b51 ("x86/sme: Move early SME kernel encryption handling into .head.text") +Reported-by: kernel test robot <[email protected]> +Closes: https://lore.kernel.org/oe-lkp/[email protected] +Signed-off-by: Ard Biesheuvel <[email protected]> +Link: https://lore.kernel.org/r/[email protected] +Signed-off-by: Kees Cook <[email protected]> +--- + scripts/gcc-plugins/stackleak_plugin.c | 2 ++ + 1 file changed, 2 insertions(+) + +diff --git a/scripts/gcc-plugins/stackleak_plugin.c b/scripts/gcc-plugins/stackleak_plugin.c +index c5c2ce113c9232..d20c47d21ad835 100644 +--- a/scripts/gcc-plugins/stackleak_plugin.c ++++ b/scripts/gcc-plugins/stackleak_plugin.c +@@ -467,6 +467,8 @@ static bool stackleak_gate(void) + return false; + if (STRING_EQUAL(section, ".entry.text")) + return false; ++ if (STRING_EQUAL(section, ".head.text")) ++ return false; + } + + return track_frame_size >= 0; +-- +cgit 1.2.3-korg +
