On Fri, Nov 01, 2019 at 04:52:15PM +0800, Yang Weijiang wrote: > Control-flow Enforcement Technology (CET) provides protection against > Return/Jump-Oriented Programming (ROP/JOP) attack. It includes two > sub-features: Shadow Stack (SHSTK) and Indirect Branch Tracking (IBT). > > KVM change is required to support guest CET feature. > This patch serial implemented CET related CPUID/XSAVES enumeration, MSRs > and vmentry/vmexit configuration etc.so that guest kernel can setup CET > runtime infrastructure based on them. Some CET MSRs and related feature > flags used reference the definitions in kernel patchset. > > CET kernel patches is here: > https://lkml.org/lkml/2019/8/13/1110 > https://lkml.org/lkml/2019/8/13/1109 Is there a git tree with all of them against v5.5-rc1 (so all three series)? I tried your github tree: https://github.com/yyu168/linux_cet.git #cet but sadly that does not apply against 5.5-rc1 :-( Thanks!
