Jump to content

Supervisor Mode Access Prevention

Edit links
From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Gordon4959 (talk | contribs) at 18:31, 31 March 2016 (Let this page actually describe the SMAP feature, instead of simply redirecing to the Intel Broadwell page.). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Supervisor Mode Access Prevention (SMAP)

SMAP is a feature of some CPU implementations such as the Intel Broadwell (microarchitecture) that allows supervisor mode programs to optionally set user-space memory mappings so that access to those mappings from supervisor mode will cause a trap. This makes it harder for malicious programs to "trick" the kernel into using instructions or data from a user-space program.

References:

https://lwn.net/Articles/517475/
https://software.intel.com/en-us/articles/intel-xeon-processor-d-product-family-technical-overview#_Toc419802869

Retrieved from "https://en.wikipedia.org/w/index.php?title=Supervisor_Mode_Access_Prevention&oldid=712895263"