Re: [RFC] security: replace indirect calls with static calls

From: Peter Zijlstra
Date: Fri Feb 05 2021 - 18:37:00 EST

Next message: SeongJae Park: "Re: [PATCH v24 07/14] mm/damon: Implement a debugfs-based user space interface"
Previous message: Shakeel Butt: "Re: [External] Re: [PATCH] mm: memcontrol: remove rcu_read_lock from get_mem_cgroup_from_page"
In reply to: Mathieu Desnoyers: "Re: [RFC] security: replace indirect calls with static calls"
Next in thread: Mathieu Desnoyers: "Re: [RFC] security: replace indirect calls with static calls"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Feb 05, 2021 at 10:09:26AM -0500, Mathieu Desnoyers wrote:
> Then we should be able to generate the following using static keys as a
> jump table and N static calls:
>
> jump <static key label target>
> label_N:
> stack setup
> call
> label_N-1:
> stack setup
> call
> label_N-2:
> stack setup
> call
> ...
> label_0:
> jump end
> label_fallback:
> <iteration and indirect calls>
> end:
>
> So the static keys would be used to jump to the appropriate label (using
> a static branch, which has pretty much 0 overhead). Static calls would
> be used to implement each of the calls.
>
> Thoughts ?

At some point I tried to extend the static_branch infra to do multiple
targets and while the low level plumbing is trivial, I ran into trouble
trying to get a sane C level API for it.

Next message: SeongJae Park: "Re: [PATCH v24 07/14] mm/damon: Implement a debugfs-based user space interface"
Previous message: Shakeel Butt: "Re: [External] Re: [PATCH] mm: memcontrol: remove rcu_read_lock from get_mem_cgroup_from_page"
In reply to: Mathieu Desnoyers: "Re: [RFC] security: replace indirect calls with static calls"
Next in thread: Mathieu Desnoyers: "Re: [RFC] security: replace indirect calls with static calls"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]