mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-24 17:44:17 +01:00
82854693ae
Add the WITH/WITHOUT_BRANCH_PROTECTION build flags. This can be used to enable the use of pointer authentication (FEAT_PAuth) and branch target identification (FEAT_BTI) in userspace. The kernel already handles both of these is userspace, we just need to enable it. Leave disabled for a short period for this to settle before enabling. Reviewed by: emaste Sponsored by: Arm Ltd Differential Revision: https://reviews.freebsd.org/D42596
5 lines
204 B
Plaintext
5 lines
204 B
Plaintext
Build with branch protection enabled.
|
|
On arm64 enable the use of pointer authentication and
|
|
branch target identification instructions on arm64.
|
|
These can be used to help mitigate some exploit techniques.
|