projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3667f7f) | patch
xen: CFI hardening for x86 hypercalls
authorAndrew Cooper <andrew.cooper3@citrix.com>
Thu, 21 Oct 2021 17:38:50 +0000 (18:38 +0100)
committerAndrew Cooper <andrew.cooper3@citrix.com>
Wed, 23 Feb 2022 15:33:42 +0000 (15:33 +0000)
commit517b9114bfddf24ecb8890be79e1d218254dbf18
treecba79816b12cee0402385f755a397e7b61d8a7f8tree | snapshot
parent3667f7f8f7c471e94e58cf35a95f09a0fe5c1290commit | diff
xen: CFI hardening for x86 hypercalls

Control Flow Integrity schemes use toolchain and optionally hardware support
to help protect against call/jump/return oriented programming attacks.

Use cf_check to annotate function pointer targets for the toolchain.

Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Acked-by: Jan Beulich <jbeulich@suse.com>
40 files changed:
xen/arch/x86/compat.c diff | blob | history
xen/arch/x86/cpu/mcheck/mce.c diff | blob | history
xen/arch/x86/cpu/vpmu.c diff | blob | history
xen/arch/x86/hvm/dm.c diff | blob | history
xen/arch/x86/hvm/hvm.c diff | blob | history
xen/arch/x86/hvm/hypercall.c diff | blob | history
xen/arch/x86/include/asm/hypercall.h diff | blob | history
xen/arch/x86/include/asm/paging.h diff | blob | history
xen/arch/x86/mm.c diff | blob | history
xen/arch/x86/mm/paging.c diff | blob | history
xen/arch/x86/physdev.c diff | blob | history
xen/arch/x86/platform_hypercall.c diff | blob | history
xen/arch/x86/pv/callback.c diff | blob | history
xen/arch/x86/pv/descriptor-tables.c diff | blob | history
xen/arch/x86/pv/iret.c diff | blob | history
xen/arch/x86/pv/misc-hypercalls.c diff | blob | history
xen/arch/x86/pv/shim.c diff | blob | history
xen/arch/x86/x86_64/compat/mm.c diff | blob | history
xen/common/argo.c diff | blob | history
xen/common/compat/domain.c diff | blob | history
xen/common/compat/grant_table.c diff | blob | history
xen/common/compat/kernel.c diff | blob | history
xen/common/compat/memory.c diff | blob | history
xen/common/dm.c diff | blob | history
xen/common/domain.c diff | blob | history
xen/common/domctl.c diff | blob | history
xen/common/event_channel.c diff | blob | history
xen/common/grant_table.c diff | blob | history
xen/common/hypfs.c diff | blob | history
xen/common/kernel.c diff | blob | history
xen/common/kexec.c diff | blob | history
xen/common/memory.c diff | blob | history
xen/common/multicall.c diff | blob | history
xen/common/sched/compat.c diff | blob | history
xen/common/sched/core.c diff | blob | history
xen/common/sysctl.c diff | blob | history
xen/common/xenoprof.c diff | blob | history
xen/drivers/char/console.c diff | blob | history
xen/include/xen/hypercall.h diff | blob | history
xen/xsm/xsm_core.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.