←back to thread

Memory Integrity Enforcement

(security.apple.com)
458 points circuit | 2 comments | 09 Sep 25 18:25 UTC | HN request time: 0s | source
Show context
brcmthrowaway ◴[09 Sep 25 20:07 UTC] No.45188066[source]
How does this compare to CHERI?
replies(2): >>45188739 #>>45188796 #
1. ysnp ◴[09 Sep 25 20:47 UTC] No.45188796[source]
https://saaramar.github.io/memory_safety_blogpost_2022/ is a nice article which goes into this topic for MTE in the past.
replies(1): >>45188881 #
2. bri3d ◴[09 Sep 25 20:52 UTC] No.45188881[source]
And of note, the Apple implementation basically forces the invariants documented in the author's talk:

* use synchronous exceptions (“precise-mode”), which means the faulted instruction cannot retire and cause damage

* re-tag allocations on free