You are viewing the 2025 edition of FOSDEM. Click here to view the 2026 edition
Enabling Architectural Features in Debian: PAC and BTI on arm64
H.1302 (Depage) | Day 2 | 15:00 - 15:30 | Speakers: Emanuele Rocca
Enabling Architectural Features in Debian: PAC and BTI on arm64
Abstract
Arm processors provide two security features called Pointer Authentication (PAC) and Branch Target Identification (BTI). They are designed to mitigate Return-Oriented Programming (ROP) and Jump-Oriented Programming (JOP) security exploits respectively. Enabling features such as PAC and BTI in a Linux distribution entails modifications all across the board, from the Kernel to the C library and compiler. Further, all packages need to be rebuilt with a specific compiler flag in order for the features to be enabled.
This talk presents the integration work done so far in Debian, how we are monitoring enablement progress, and the tasks ahead.
Attachments
Speakers
Emanuele Rocca
Links
External Links
Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.