review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Ard Biesheuvel <ardb@kernel.org>
	Thu, 27 Oct 2022 15:59:07 +0000 (17:59 +0200)
committer	Will Deacon <will@kernel.org>
	Wed, 9 Nov 2022 18:06:35 +0000 (18:06 +0000)
commit	9beccca0984022a844850e32f0d7dd80d4a225de
tree	f9a9128498d40dee1958e15b212707872f039e38	tree \| snapshot
parent	68c76ad4a9571a2b603665c85cf8229bcf04982a	commit \| diff

scs: add support for dynamic shadow call stacks

In order to allow arches to use code patching to conditionally emit the
shadow stack pushes and pops, rather than always taking the performance
hit even on CPUs that implement alternatives such as stack pointer
authentication on arm64, add a Kconfig symbol that can be set by the
arch to omit the SCS codegen itself, without otherwise affecting how
support code for SCS and compiler options (for register reservation, for
instance) are emitted.

Also, add a static key and some plumbing to omit the allocation of
shadow call stack for dynamic SCS configurations if SCS is disabled at
runtime.

Signed-off-by: Ard Biesheuvel <ardb@kernel.org>
Reviewed-by: Nick Desaulniers <ndesaulniers@google.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Sami Tolvanen <samitolvanen@google.com>
Tested-by: Sami Tolvanen <samitolvanen@google.com>
Link: https://lore.kernel.org/r/20221027155908.1940624-3-ardb@kernel.org
Signed-off-by: Will Deacon <will@kernel.org>

Makefile		diff \| blob \| history
arch/Kconfig		diff \| blob \| history
include/linux/scs.h		diff \| blob \| history
kernel/scs.c		diff \| blob \| history