subject:"\[PATCH v15 00\/14\] Introduce support for guest CET feature"

Re: [PATCH v15 00/14] Introduce support for guest CET feature

2021-02-03 Thread Paolo Bonzini

On 03/02/21 12:34, Yang Weijiang wrote: Control-flow Enforcement Technology (CET) provides protection against Return/Jump-Oriented Programming (ROP/JOP) attack. There're two CET subfeatures: Shadow Stack (SHSTK) and Indirect Branch Tracking (IBT). SHSTK is to prevent ROP and IBT is to prevent JOP

[PATCH v15 00/14] Introduce support for guest CET feature

2021-02-03 Thread Yang Weijiang

Control-flow Enforcement Technology (CET) provides protection against Return/Jump-Oriented Programming (ROP/JOP) attack. There're two CET subfeatures: Shadow Stack (SHSTK) and Indirect Branch Tracking (IBT). SHSTK is to prevent ROP and IBT is to prevent JOP. Several parts in KVM have been updated