Linux Plumbers Conference 2025

Name: Linux Plumbers Conference 2025
Start: 2025-12-11T09:00:00+09:00
End: 2025-12-13T22:00:00+09:00
Location: No location set

11–13 Dec 2025

Asia/Tokyo timezone

2025

contact@linuxplumbersconf.org

Security Features status update

Not scheduled

20m

Toolchains MC Toolchains MC

Justin Stitt (Google) Kees Cook (Google)

Another year of work is behind us, with lots of progress across GCC, Clang, and Rust to provide the Linux kernel with a variety of security features. Let's review and discuss where we are with parity between toolchains, approaches to solving open problems, and exploring new features.

Parity reached since last year:

arbitrary stack protector guard location (Clang: RISC-V, PowerPC)
counted_by attribute for Pointer Members (GCC, Clang)

Compiler-specific features landed since last year:

improved diagnostics for -Warray-bounds and related warnings (GCC)
kcfi hash salt attribute (Clang)

In progress:

-fbounds-safety language extension (Clang)
arithmetic overflow protection via Overflow Behavior Types and __strong typedef (Clang)
forward edge Control Flow Integrity (GCC: KCFI)

Stalled, needs driving:

Link Time Optimization (Kernel support for GCC)
backward edge Control Flow Integrity (x86 CET Shadow Stack in kernel mode)

Kees Cook (Google)

Bill Wendling (Google) Justin Stitt (Google) Qing Zhao

There are no materials yet.

Linux Plumbers Conference 2025

2025

Security Features status update

Speakers

Description

Primary author

Co-authors

Presentation materials

Choose timezone

Linux Plumbers Conference 2025

2025

Speakers

Description

Primary author

Co-authors

Presentation materials