Mitigating Linux kernel memory corruptions with Arm Memory Tagging | Linux Security Summit 2021
Memory tagging is coming to kill all of your favorite Linux kernel exploits!
Memory Tagging Extension (MTE) is an ARM v8.5 feature that enables hardware-assisted validation of the correctness of memory accesses. In a nutshell, MTE allows assigning tags to memory allocations, as well as to pointers that refer to those allocations. When a pointer is accessed, the CPU performs a validity check that ensures that the memory tag matches the pointer tag.
In this talk, I explain how MTE is used to assert the validity of kernel memory accesses. I describe the newly added Hardware Tag-Based KASAN mode, its weaknesses, and planned improvements.
Slides:
Twitter:
Website:
00:00 Intro
03:16 Memory tagging
04:49 Arm Memory Tagging Extension
10:28 In-kernel MTE or Hardware Tag-Based KASAN
13:19 Preventing memory corruptions
8 months ago 02:00:03 1
9 months ago 00:27:35 1
11 months ago 00:09:44 1
1 year ago 00:09:21 4
1 year ago 00:14:26 1
1 year ago 05:16:30 2
1 year ago 00:10:14 1
1 year ago 00:15:25 3
2 years ago 00:13:13 1
2 years ago 00:24:04 1
2 years ago 00:11:47 1
2 years ago 00:24:25 4
3 years ago 00:12:09 5
4 years ago 00:39:15 1
![[ENG] Evgeniy Paltsev: Self modifying code in Linux kernel - what where and how / #LinuxPiter](https://sun9-60.userapi.com/c856028/v856028011/219fd0/fUQDE3_Fuwc.jpg)
5 years ago 00:40:48 1
![[ENG] Marian Marinov: Comparison of eBPF, XDP and DPDK for packet inspection / #LinuxPiter](https://sun9-33.userapi.com/c857536/v857536751/173009/0LUmobD7icY.jpg)
7 years ago 00:55:35 4
![Alexander Krizhanovsky: “Tempesta FW: yet another Linux kernel Web-accelerator“ [ENG]](https://sun9-78.userapi.com/a6ESTWzd1sPm9ILc-U-G_EOW0ArKECN77e9LkQ/ZkqTTlepCYE.jpg)