Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the latest developments in Linux kernel security features through this 21-minute conference talk from the Linux Plumbers Conference. Learn about the significant progress made across GCC, Clang, and Rust toolchains in providing enhanced security capabilities for the Linux kernel. Discover the current state of parity between different toolchains and examine approaches to solving ongoing security challenges. Review key achievements from the past year, including arbitrary stack protector guard location support for RISC-V and PowerPC in Clang, and the counted_by attribute for Pointer Members in both GCC and Clang. Understand compiler-specific improvements such as enhanced diagnostics for -Warray-bounds warnings in GCC and the kcfi hash salt attribute in Clang. Examine ongoing development efforts including Clang's -fbounds-safety language extension, arithmetic overflow protection via Overflow Behavior Types, and forward edge Control Flow Integrity implementation in GCC. Gain insights into stalled initiatives that require renewed focus, including Link Time Optimization kernel support for GCC and backward edge Control Flow Integrity with x86 CET Shadow Stack in kernel mode.
