Re: [PATCH 00/11] x86: Supervisor Mode Access Prevention
[Posted September 25, 2012 by corbet]
| From: |
| Linus Torvalds <torvalds-AT-linux-foundation.org> |
| To: |
| "H. Peter Anvin" <hpa-AT-linux.intel.com> |
| Subject: |
| Re: [PATCH 00/11] x86: Supervisor Mode Access Prevention |
| Date: |
| Fri, 21 Sep 2012 12:54:04 -0700 |
| Message-ID: |
| <CA+55aFwaZdMxLA1VCfOy9BDQHPp6CTwRFHYGUCXdJ4+KkQoN+g@mail.gmail.com> |
| Cc: |
| Linux Kernel Mailing List <linux-kernel-AT-vger.kernel.org>,
"H. Peter Anvin" <hpa-AT-zytor.com>, Ingo Molnar <mingo-AT-kernel.org>,
Thomas Gleixner <tglx-AT-linutronix.de>,
Kees Cook <keescook-AT-chromium.org>,
Linda Wang <lwang-AT-redhat.com>,
Matt Fleming <matt.fleming-AT-intel.com> |
| Archive‑link: | |
Article |
On Fri, Sep 21, 2012 at 12:43 PM, H. Peter Anvin <hpa@linux.intel.com> wrote:
> Supervisor Mode Access Prevention (SMAP) is a new security feature
> disclosed by Intel in revision 014 of the IntelĀ® Architecture
> Instruction Set Extensions Programming Reference:
Looks good.
Did this find any bugs, btw? We've had a few cases where we forgot to
use the proper user access function, and code just happened to work
because it all boils down to the same thing and never got any page
faults in practice anyway..
I'd obviously hope that we have caught all of them, but.. IOW, has
SMAP actually triggered for anybody in testing inside Intel?
Linus
