On Tue, 3 Sep 2024 09:25:55 GMT, Andrew Haley wrote:
> What is the effect on JNI? Is there full interworking with
> non-branch-protected libraries?
@theRealAph, thanks for your review!
It should be no problem to have libjvm.so built with BTI and a JNI library
built without BTI.
BTI marks cod
On Thu, 15 Aug 2024 15:32:28 GMT, Fei Gao wrote:
>> This patch enables BTI branch protection for runtime part on Linux/aarch64
>> platform.
>>
>> Motivation
>>
>> 1. Since Fedora 33, glibc+kernel are PAC/BTI enabled by default. User-level
>> packages can gain additional hardening by compiling
On Thu, 15 Aug 2024 15:32:28 GMT, Fei Gao wrote:
>> This patch enables BTI branch protection for runtime part on Linux/aarch64
>> platform.
>>
>> Motivation
>>
>> 1. Since Fedora 33, glibc+kernel are PAC/BTI enabled by default. User-level
>> packages can gain additional hardening by compiling
> This patch enables BTI branch protection for runtime part on Linux/aarch64
> platform.
>
> Motivation
>
> 1. Since Fedora 33, glibc+kernel are PAC/BTI enabled by default. User-level
> packages can gain additional hardening by compiling with the GCC/Clang flag
> `-mbranch-protection=flag`. Se