There’s so much cool stuff coming down the pike. ARM pointer authentication: MACs for pointers. Can’t wait to see how people defeat that.
-
-
and if you use something like Linux kernel alternatives, you could maybe swap out PAC for a less efficient software implementation after the first crash?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
That's true, but they didn't need to trigger brute force protection on all random accesses to cover the most important part, only no-execute violations. PAC violations triggered in regular use aren't necessarily going to be less common than that.
-
It's just a bit frustrating that they're making more of these probabilistic mitigations. They could be adding hardware support for integer overflow checks, fine-grained deterministic CFI, etc. At least it seems it would be really hard to leak the keys for this, if crypto is good.
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.