Re: [PATCH v26 1/9] x86/cet/ibt: Add Kconfig option for Indirect Branch Tracking

From: Kees Cook
Date: Wed Apr 28 2021 - 16:29:28 EST

Next message: David Ahern: "Re: [PATCH v6 net-next 3/3] selftests/net/forwarding: configurable seed tests"
Previous message: Nick Desaulniers: "Re: [PATCH 00/13] [RFC] Rust support"
In reply to: Yu-cheng Yu: "[PATCH v26 1/9] x86/cet/ibt: Add Kconfig option for Indirect Branch Tracking"
Next in thread: Yu-cheng Yu: "[PATCH v26 2/9] x86/cet/ibt: Add user-mode Indirect Branch Tracking support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Apr 27, 2021 at 01:47:12PM -0700, Yu-cheng Yu wrote:
> Indirect Branch Tracking (IBT) provides protection against CALL-/JMP-
> oriented programming attacks. It is active when the kernel has this
> feature enabled, and the processor and the application support it.
> When this feature is enabled, legacy non-IBT applications continue to
> work, but without IBT protection.
>
> Signed-off-by: Yu-cheng Yu <yu-cheng.yu@xxxxxxxxx>

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

--
Kees Cook

Next message: David Ahern: "Re: [PATCH v6 net-next 3/3] selftests/net/forwarding: configurable seed tests"
Previous message: Nick Desaulniers: "Re: [PATCH 00/13] [RFC] Rust support"
In reply to: Yu-cheng Yu: "[PATCH v26 1/9] x86/cet/ibt: Add Kconfig option for Indirect Branch Tracking"
Next in thread: Yu-cheng Yu: "[PATCH v26 2/9] x86/cet/ibt: Add user-mode Indirect Branch Tracking support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]