> The interrupt descriptor table was chosen because it is very easy to get it's address even on hardened builds -- using sidt instruction.
That reminded me of the following commit, which was merged for 3.10:
> Make a copy of the IDT (as seen via the "sidt" instruction) read-only. This primarily removes the IDT from being a target for arbitrary memory write attacks, and has the added benefit of also not leaking the kernel base offset, if it has been relocated.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds