From 747616ae0a1db0bcf92c344973c96feadc4edda9 Mon Sep 17 00:00:00 2001
From: Daniel Micay <daniel.micay@grapheneos.org>
Date: Wed, 5 Mar 2025 11:00:06 -0500
Subject: [PATCH] clarify hardware CFI requirement

---
 static/faq.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/static/faq.html b/static/faq.html
index a568da8c..75f8efec 100644
--- a/static/faq.html
+++ b/static/faq.html
@@ -314,7 +314,7 @@
                         <li>Hardware accelerated virtualization usable by GrapheneOS (ideally pKVM
                         to match Pixels but another usable implementation may be acceptable)</li>
                         <li>Hardware memory tagging (ARM MTE or equivalent)</li>
-                        <li>BTI/PAC, CET or equivalent</li>
+                        <li>Hardware-based coarse grained Control Flow Integrity (CFI) for baseline coverage where type-based CFI isn't used or can't be deployed (BTI/PAC, CET IBT or equivalent)</li>
                         <li>PXN, SMEP or equivalent</li>
                         <li>PAN, SMAP or equivalent</li>
                         <li>Isolated radios (cellular, Wi-Fi, Bluetooth, NFC, etc.), GPU, SSD,