https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102952
--- Comment #16 from H.J. Lu <hjl.tools at gmail dot com> --- (In reply to Andrew Cooper from comment #15) > So this is the irritating corner case where the two options are linked. > > *If* we are using -mindirect-branch-cs-prefix, then we intend to rewrite > `jmp __x86_indirect_thunk_*` to `jmp *%reg` or `lfence; jmp *%reg` based on > boot time configuration/settings. > > In this case, we still need to fit the `int3` for SLS protection in > somewhere. > > The two options are: > 1) Special case `jmp __x86_indirect_thunk_*` as if it were an indirect jump > and write out an `int3` directly, or I can do this. > 2) Pad one extra %cs prefix on the jmp, so we've got space to insert one at > boot time.
