From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <hjl@sourceware.org>
Received: by sourceware.org (Postfix, from userid 1039)
	id 232293861823; Wed, 20 Dec 2023 13:45:54 +0000 (GMT)
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 232293861823
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sourceware.org;
	s=default; t=1703079954;
	bh=ZdZsMW09DeNMldiLpWyuvCvhT+SHkiK4w16qa0V8+Rw=;
	h=From:To:Subject:Date:From;
	b=ZNBCnJ/sMPW6+1D1uCtHpqsHP0dzPVTlm9/2wMI2ZHYxa2pON1dPY7FNSgPaEwHM9
	 QkdLFJWacR6tfa4Af2sNqmEN0aOdKhdKSZrt75cniKUO3LaAAlkTSzx0vEdqN29edc
	 AZRJbovngsidutcyOUHgVBqqcuC4S2B7lcYwTBac=
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: H.J. Lu <hjl@sourceware.org>
To: glibc-cvs@sourceware.org
Subject: [glibc] x86/cet: Don't disable CET if not single threaded
X-Act-Checkin: glibc
X-Git-Author: H.J. Lu <hjl.tools@gmail.com>
X-Git-Refname: refs/heads/master
X-Git-Oldrev: c04035809a393c0c6f1cc523df6b316b05fdb50f
X-Git-Newrev: 41560a9312ce0ec7203480eef8f865076bff9edb
Message-Id: <20231220134554.232293861823@sourceware.org>
Date: Wed, 20 Dec 2023 13:45:54 +0000 (GMT)
List-Id: <glibc-cvs.sourceware.org>

https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=41560a9312ce0ec7203480eef8f865076bff9edb

commit 41560a9312ce0ec7203480eef8f865076bff9edb
Author: H.J. Lu <hjl.tools@gmail.com>
Date:   Fri Jul 28 14:06:01 2023 -0700

    x86/cet: Don't disable CET if not single threaded
    
    In permissive mode, don't disable IBT nor SHSTK when dlopening a legacy
    shared library if not single threaded since IBT and SHSTK may be still
    enabled in other threads.  Other threads with IBT or SHSTK enabled will
    crash when calling functions in the legacy shared library.  Instead, an
    error will be issued.

Diff:
---
 sysdeps/x86/dl-cet.c | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/sysdeps/x86/dl-cet.c b/sysdeps/x86/dl-cet.c
index 67c51ee8c2..e486e549be 100644
--- a/sysdeps/x86/dl-cet.c
+++ b/sysdeps/x86/dl-cet.c
@@ -20,6 +20,7 @@
 #include <libintl.h>
 #include <ldsodefs.h>
 #include <dl-cet.h>
+#include <sys/single_threaded.h>
 
 /* GNU_PROPERTY_X86_FEATURE_1_IBT and GNU_PROPERTY_X86_FEATURE_1_SHSTK
    are defined in <elf.h>, which are only available for C sources.
@@ -233,7 +234,10 @@ dl_cet_check_dlopen (struct link_map *m, struct dl_cet_info *info)
       && (info->feature_1_legacy
 	  & GNU_PROPERTY_X86_FEATURE_1_IBT) != 0)
     {
-      if (info->enable_ibt_type != cet_permissive)
+      /* Don't disable IBT if not single threaded since IBT may be still
+	 enabled in other threads.  */
+      if (info->enable_ibt_type != cet_permissive
+	  || !SINGLE_THREAD_P)
 	{
 	  legacy_obj = info->feature_1_legacy_ibt;
 	  msg = N_("rebuild shared object with IBT support enabled");
@@ -249,7 +253,10 @@ dl_cet_check_dlopen (struct link_map *m, struct dl_cet_info *info)
       && (info->feature_1_legacy
 	  & GNU_PROPERTY_X86_FEATURE_1_SHSTK) != 0)
     {
-      if (info->enable_shstk_type != cet_permissive)
+      /* Don't disable SHSTK if not single threaded since SHSTK may be
+         still enabled in other threads.  */
+      if (info->enable_shstk_type != cet_permissive
+	  || !SINGLE_THREAD_P)
 	{
 	  legacy_obj = info->feature_1_legacy_shstk;
 	  msg = N_("rebuild shared object with SHSTK support enabled");