CONFIG_ARM64_PTR_AUTH: Enable support for pointer authentication

General informations

The Linux kernel configuration item CONFIG_ARM64_PTR_AUTH:

• prompt: Enable support for pointer authentication
• type: bool
• depends on: (none)
• defined in arch/arm64/Kconfig
• found in Linux kernels: 5.0–5.19, 6.0–6.8, 6.9-rc+HEAD

Help text

Pointer authentication (part of the ARMv8.3 Extensions) provides instructions for signing and authenticating pointers against secret keys, which can be used to mitigate Return Oriented Programming (ROP) and other attacks.

This option enables these instructions at EL0 (i.e. for userspace). Choosing this option will cause the kernel to initialise secret keys for each process at exec() time, with these keys being context-switched along with the process.

The feature is detected at runtime. If the feature is not present in hardware it will not be advertised to userspace/KVM guest nor will it be enabled.

If the feature is present on the boot CPU but not on a late CPU, then the late CPU will be parked. Also, if the boot CPU does not have address auth and the late CPU has then the late CPU will still boot but with the feature disabled. On such a system, this option should not be selected.

Hardware

LKDDb

Raw data from LKDDb:

• (none)

Sources

This page is automaticly generated with free (libre, open) software lkddb(see lkddb-sources).

The data is retrived from:

• Linux kernel
• Linux Kernel Driver DataBase (LKDDb)

Automatic links from Google (and ads)

Custom Search

Popular queries: