Future Intel CPUs and some existing processors via a microcode update will support a new feature called the Asynchronous EXit (AEX) notification mechanism to help with Software Guard Extensions (SGX) enclave security. Patches for the Linux kernel are pending for implementing this Intel AEX Notify support with capable processors.
Indirect Branch Tracking (IBT) is still being eyed for enabling as part of the default Linux x86_64 kernel configurations to provide better out-of-the-box security on supported processors. A patch sent out today continues the upstream discussion over flipping on this feature by default that is part of Intel's Control-flow Enforcement Technology (CET) for helping to defend against jump/call oriented programming attacks.
Sigstore that is backed by Google, Red Hat, GitHub, and other prominent organizations with an aim to secure the open-source software supply chain has reached general availability and issued the "v1.0" releases for their key software components.
Linux Torvalds, founder of the Linux kernel, has posted in the kernel mailing list that he wants to drop support for Intel 486 (i486) processors, citing their age. The i486 CPUs were introduced way back in April 1989 and discontinued in 2007. They were designed by Pat Gelsinger, who is now Intel’s CEO.
Now that Linux 6.1-rc1 was released, here is my look at all of the interesting kernel changes and new features that landed over the past two weeks. Linux 6.1 is shaping up to be another exciting kernel with many new software features, new hardware enablement work, and other changes for this end-of-year 2022 kernel version that is also likely to be the next Linux LTS release.