1. Computers
  2. Display Drivers
  3. Graphics Cards
  4. Memory
  5. Motherboards
  6. Processors
  7. Software
  8. Storage
  9. Operating Systems


Facebook RSS Twitter Twitter Google Plus


Phoronix Test Suite

OpenBenchmarking.org

Intel SMAP Comes To Try To Better Secure Linux

Intel

Published on 02 October 2012 10:40 AM EDT
Written by Michael Larabel in Intel
11 Comments

Intel SMAP support has landed in the mainline Linux kernel, which is a Supervisor Mode Access Prevention found on newer Intel CPUs.

The Supervisor Mode Access Prevention feature is an instruction set extension whereby the kernel cannot access pages that are user-space. However, when the need comes about for the kernel to access a user-space page, an override is available. This work from Intel was originally published last month and has now been merged into the mainline kernel for Linux 3.7.

Basically SMAP comes down to a hardware feature preventing unintended user-space data access from kernel code. SMAP works alongside SMEP (Supervisor Mode Execution Protection) to try to prevent kernel bugs from being exploited. Intel SMAP is turned on by default for supported hardware. The kernel config option for SMAP does mention though, "There is a small performance cost if this enabled and turned on; there is also a small increase in the kernel size if this is enabled."

The merge of SMAP for Linux 3.7 happened with this commit.

About The Author
Michael Larabel is the principal author of Phoronix.com and founded the web-site in 2004 with a focus on enriching the Linux hardware experience and being the largest web-site devoted to Linux hardware reviews, particularly for products relevant to Linux gamers and enthusiasts but also commonly reviewing servers/workstations and embedded Linux devices. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics hardware drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated testing software. He can be followed via and or contacted via .
Latest Articles & Reviews
  1. Linux Compiler Benchmarks Of LLVM Clang 3.5 vs. LLVM Clang 3.6-rc1
  2. Intel Broadwell HD Graphics 5500: Windows 8.1 vs. Linux
  3. Linux Benchmarks Of NVIDIA's Early 2015 GeForce Line-Up
  4. NVIDIA GeForce GTX 960: A Great $200 GPU For Linux Gamers
  5. Disk Encryption Tests On Fedora 21
  6. Xonotic 0.8 Performance With The Open-Source AMD/NVIDIA Gallium3D Drivers
Latest Linux News
  1. Broadwell Linux Ultrabook Running MUCH Cooler Than Haswell
  2. LZHAM 1.0 Lossless Data Compression Codec Released
  3. LibreOffice 4.4 Is Coming Soon With New Features
  4. Linux Users Upset By Chromium's Busted HiDPI Support
  5. BPF Backend Merged Into LLVM To Make Use Of New Kernel Functionality
  6. Dying Light Is Headed To Linux, SteamOS
  7. Wayland 1.6.1 & Weston 1.6.1 Released
  8. Mesa 10.4.3 Brings A Bunch Of Fixes For The Direct3D "Nine" Support
  9. Intel Has A Few More Graphics Changes For The Linux 3.20 Kernel
  10. Gummiboot Gains PE File Searching Support To Find Linux Kernels
Most Viewed News This Week
  1. Windows 10 To Be A Free Upgrade: What Linux Users Need To Know
  2. CoreOS Moves From Btrfs To EXT4 + OverlayFS
  3. Google Admin Encourages Trying Btrfs, Not ZFS On Linux
  4. TraceFS: The Newest Linux File-System
  5. Mozilla's Servo Still On Track For 2015 Alpha Release
  6. My Initial Intel Broadwell Linux Experience With The ThinkPad X1 Carbon
  7. Fedora 23 Likely To Pursue Wayland By Default
  8. Keith Packard Leaves Intel's Linux Graphics Work