Control-flow Enforcement Technology (CET) provides protection against return/jump-oriented programming (ROP) attacks. To make kvm Guest OS own the capability, this patch-set is required. It enables CET related CPUID report and xsaves/xrstors support etc in qemu.
Yang Weijiang (4): Add CET xsaves/xrstors related macros and structures. Add CET SHSTK and IBT CPUID feature-word definitions. Add hepler functions for CPUID xsave area size calculation. Report CPUID xsave area support for CET. target/i386/cpu.c | 67 ++++++++++++++++++++++++++++++++++++++++++++--- target/i386/cpu.h | 36 ++++++++++++++++++++++++- 2 files changed, 99 insertions(+), 4 deletions(-) -- 2.17.1
