1. Computers
  2. Display Drivers
  3. Graphics Cards
  4. Memory
  5. Motherboards
  6. Processors
  7. Software
  8. Storage
  9. Operating Systems


Facebook RSS Twitter Twitter Google Plus


Phoronix Test Suite

OpenBenchmarking.org

Intel SMAP Comes To Try To Better Secure Linux

Intel

Published on 02 October 2012 10:40 AM EDT
Written by Michael Larabel in Intel
11 Comments

Intel SMAP support has landed in the mainline Linux kernel, which is a Supervisor Mode Access Prevention found on newer Intel CPUs.

The Supervisor Mode Access Prevention feature is an instruction set extension whereby the kernel cannot access pages that are user-space. However, when the need comes about for the kernel to access a user-space page, an override is available. This work from Intel was originally published last month and has now been merged into the mainline kernel for Linux 3.7.

Basically SMAP comes down to a hardware feature preventing unintended user-space data access from kernel code. SMAP works alongside SMEP (Supervisor Mode Execution Protection) to try to prevent kernel bugs from being exploited. Intel SMAP is turned on by default for supported hardware. The kernel config option for SMAP does mention though, "There is a small performance cost if this enabled and turned on; there is also a small increase in the kernel size if this is enabled."

The merge of SMAP for Linux 3.7 happened with this commit.

About The Author
Michael Larabel is the principal author of Phoronix.com and founded the web-site in 2004 with a focus on enriching the Linux hardware experience and being the largest web-site devoted to Linux hardware reviews, particularly for products relevant to Linux gamers and enthusiasts but also commonly reviewing servers/workstations and embedded Linux devices. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics hardware drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated testing software. He can be followed via and or contacted via .
Latest Articles & Reviews
  1. Kubuntu 15.04 Is Turning Out Quite Nice, Good Way To Try Out The Latest KDE
  2. 5-Way Linux Distribution Comparison On The Core i3 NUC
  3. OCZ ARC 100 Linux SSD Benchmarks
  4. Lenovo ThinkPad X1 Carbon Works Great As A Linux Ultrabook
  5. Transcend SSD370 256GB
  6. Linux 3.19 File-System Tests Of EXT4, Btrfs, XFS & F2FS
Latest Linux News
  1. ALSA 1.0.29 Released
  2. Ubuntu 15.04 Beta Released, Ubuntu MATE Made Official
  3. Coreboot Developer: Purism Doesn't Deliver On Libre Firmware
  4. LLVM 3.6 & Clang 3.6 Deliver More Features, Complete C++14 Support
  5. The Most Popular Open-Source Linux Benchmarks
  6. The Tremendous Features Of Fedora 22
  7. Krita 2.9 Released, Their Biggest Release Ever
  8. RISC OS Now Works With The Raspberry Pi 2
  9. A Single UEFI Executable With The Linux Kernel, Initrd & Command Line
  10. Unigine 2.0 Beta Brings Performance Optimizations, Oculus Rift DK2 Support
Most Viewed News This Week
  1. Linux 4.0-RC1 Tagged, Linux 4.0 Will Bring Many Notable Improvements
  2. Screenshots Of The GNOME 3.16 Changes
  3. Mir Now Depends Upon C++14
  4. Linux 4.0 Doesn't Have The Weirdest Codename
  5. GNOME 3.16 Beta Brings Wayland-Based Log-in Screen
  6. LLVM Clang Compiling The Linux Kernel Is A Big Topic For 2015
  7. Linux BIOS/UEFI Updating Is Going To Get Much Better With UEFI 2.5
  8. Canonical Comes Up With Its Own FUSE Filesystem For Linux Containers
%%CLICK_URL_UNESC%%