Re: [PATCH v11 0/9] Introduce support for guest CET feature

From: Sean Christopherson
Date: Thu Apr 23 2020 - 11:51:12 EST


On Thu, Mar 26, 2020 at 04:18:37PM +0800, Yang Weijiang wrote:
> Control-flow Enforcement Technology (CET) provides protection against
> Return/Jump-Oriented Programming (ROP/JOP) attack. It includes two
> sub-features: Shadow Stack (SHSTK) and Indirect Branch Tracking (IBT).
>
> KVM needs to update to enable guest CET feature.
> This patchset implements CET related CPUID/XSAVES enumeration, MSRs
> and vmentry/vmexit configuration etc.so that guest kernel can setup CET
> runtime infrastructure based on them. Some CET MSRs and related feature
> flags used reference the definitions in kernel patchset.
>
> CET kernel patches are here:
> https://lkml.org/lkml/2020/2/5/593
> https://lkml.org/lkml/2020/2/5/604

lkml.org is pretty worthless for this sort of thing, and lkml.kernel.org
is the preferred link method in general. The syntax is

https://lkml.kernel.org/r/<Message-ID>

e.g.

https://lkml.kernel.org/r/20200205181935.3712-1-yu-cheng.yu@xxxxxxxxx

Note, that will redirect to lore.kernel.org, but the above format is
preferred because it isn't dependent on binning the thread to a specific
mailing list.

Anyways, kernel.org provides a link to download the entire thread in mbox
format, which allows reviewers to get the prerequisite series without much
fuss.

https://lore.kernel.org/linux-api/20200205181935.3712-1-yu-cheng.yu@xxxxxxxxx/t.mbox.gz