On Tue, Sep 16, 2025 at 9:26 AM Edgecombe, Rick P <rick.p.edgeco...@intel.com> wrote: > > On Tue, 2025-09-16 at 09:50 +0200, Guillem Jover wrote: > > > I'm not aware of any current public activities to enable userspace > > > IBT. I haven't see any recent attempt to define a userspace/kernel ABI, > > > or to test (and port where necessary) userspace. > > > > Thanks. So, do any of you (Florian, Rick, Yu-cheng, H.J., or perhaps > > other people who have been working on this elsewhere) think we should > > switch to -fcf-protection=return (from -fcf-protection)? Or are there > > plans to add the userland IBT support in Linux in the near future? > > Otherwise it indeed seems like a bit of a waste for now? > > I'd still like to do it, but it's fair to say it's not imminent. This seems > like > a reasonable course of action.
With ENDBR64 in place, dynamic user space binaries will get IBT enhancement automatically via a glibc update when user space IBT is enabled in Linux kernel. -- H.J.
