objtool: Validate kCFI calls

Validate that all indirect calls adhere to kCFI rules. Notably doing nocfi indirect call to a cfi function is broken. Apparently some Rust 'core' code violates this and explodes when ran with FineIBT. All the ANNOTATE_NOCFI_SYM sites are prime targets for attackers. - runtime EFI is especially henous because it also needs to disable IBT. Basically calling unknown code without CFI protection at runtime is a massice security issue. - Kexec image handover; if you can exploit this, you get to keep it :-) Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org> Acked-by: Josh Poimboeuf <jpoimboe@kernel.org> Acked-by: Sean Christopherson <seanjc@google.com> Link: https://lkml.kernel.org/r/20250714103441.496787279@infradead.org
author: Peter Zijlstra <peterz@infradead.org> 2025-04-12 13:56:01 +0200
committer: Peter Zijlstra <peterz@infradead.org> 2025-08-18 14:23:09 +0200
commit: 894af4a1cde61c3401f237184fb770f72ff12df8 (patch)
tree: 6b00452a8bbc9e38b6d4578cf5990c19911724a0 /tools/objtool/include
parent: 28d11e4548b75d0960429344f12d5f6cc9cee25b (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/tools/objtool/include/objtool/elf.h b/tools/objtool/include/objtool/elf.h
index 0a2fa3ac0079..df8434d3b744 100644
--- a/tools/objtool/include/objtool/elf.h
+++ b/tools/objtool/include/objtool/elf.h
@@ -70,6 +70,7 @@ struct symbol {
 	u8 local_label       : 1;
 	u8 frame_pointer     : 1;
 	u8 ignore	     : 1;
+	u8 nocfi             : 1;
 	struct list_head pv_target;
 	struct reloc *relocs;
 	struct section *group_sec;
author	Peter Zijlstra <peterz@infradead.org>	2025-04-12 13:56:01 +0200
committer	Peter Zijlstra <peterz@infradead.org>	2025-08-18 14:23:09 +0200
commit	894af4a1cde61c3401f237184fb770f72ff12df8 (patch)
tree	6b00452a8bbc9e38b6d4578cf5990c19911724a0 /tools/objtool/include
parent	28d11e4548b75d0960429344f12d5f6cc9cee25b (diff)