I also wonder: IIRC RAP says r/w primitives aren't enough to get around it and that it can be used in kernel. What if one edits TTEs and(..)
2
6
Replying to @qwertyoruiopz
editing TTE = data-only attack -> out of scope for CFI schemes. protecting against them has been on my agenda of course.

May 17, 2016 · 10:39 PM UTC