Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

Linux 5.18 Hardens The Kernel For 64-bit Arm With Shadow Call Stack Support

Written by Michael Larabel in Arm on 28 March 2022 at 05:29 AM EDT. Add A Comment

ARM

In addition to supporting the Tesla FSD chip, Raspberry Pi Zero 2 W, and other new Arm SoCs in Linux 5.18, this kernel will also be more secure for 64-bit Arm with adding Shadow Call Stack support.

The GCC 12 compiler to be released very soon adds AArch64 Shadow Call Stack support similar to the SCS instrumentation already supported by the LLVM Clang compiler. The Shadow Call Stack compiler support is to help protect against stack buffer overflows

With the Linux 5.18 hardening updates there is support added for ARM64 (AArch64) Shadow Call Stack support when building the Linux kernel with GCC 12 and newer. Previously this work was attempted for the kernel as a kernel-specific GCC plug-in but now thankfully the GCC compiler has this upstream SCS instrumentation pass.

The ARM64 SCS support is the prominent hardening change for this current kernel cycle for protecting against return address overwrites.

Add A Comment

Related News

Linux 6.13 For ARM64 Brings GCS Support & Protected VMs With Arm CCA

Nice Performance Gains With SVT-AV1 2.3 Encoding On The System76 Thelio Astra

Snapdragon X1 Elite CPUFreq Support Revised In Latest Linux Patches

Linux Support Continues For The Now-Canceled Snapdragon X Elite Dev Kit For Windows

ARM64 SMT Control Patches Updated For The Linux Kernel

Arm's Guarded Control Stack "GCS" Support Looks Like It Will Be Ready For Linux 6.13

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts

Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels

How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs

Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd

Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal

COSMIC Alpha 4 Released For System76's Rust-Based Desktop

GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd

KDE Starts December By Landing A Number Of New Features