projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 517b911) | patch
xen: CFI hardening for custom_param()
authorAndrew Cooper <andrew.cooper3@citrix.com>
Wed, 27 Oct 2021 13:21:51 +0000 (14:21 +0100)
committerAndrew Cooper <andrew.cooper3@citrix.com>
Wed, 23 Feb 2022 15:33:43 +0000 (15:33 +0000)
commit17f0c6176e16ada6b97ccc7caac4b0b00f8e9032
treea60dc51259e9dba2134851427712f13272200c37tree | snapshot
parent517b9114bfddf24ecb8890be79e1d218254dbf18commit | diff
xen: CFI hardening for custom_param()

Control Flow Integrity schemes use toolchain and optionally hardware support
to help protect against call/jump/return oriented programming attacks.

Use cf_check to annotate function pointer targets for the toolchain.

The "watchdog_timeout" and "cpu_type" handlers were missing __init.

The "numa", "acpi", "irq_vector_map" and "flask" handlers can skip forward
declarations by altering the custom_param() position.

Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Acked-by: Jan Beulich <jbeulich@suse.com>
49 files changed:
xen/arch/x86/acpi/cpu_idle.c diff | blob | history
xen/arch/x86/acpi/power.c diff | blob | history
xen/arch/x86/apic.c diff | blob | history
xen/arch/x86/cpu/mcheck/mce.c diff | blob | history
xen/arch/x86/cpu/microcode/core.c diff | blob | history
xen/arch/x86/cpu/vpmu.c diff | blob | history
xen/arch/x86/cpuid.c diff | blob | history
xen/arch/x86/dom0_build.c diff | blob | history
xen/arch/x86/genapic/probe.c diff | blob | history
xen/arch/x86/hpet.c diff | blob | history
xen/arch/x86/hvm/viridian/viridian.c diff | blob | history
xen/arch/x86/hvm/vmx/vmcs.c diff | blob | history
xen/arch/x86/io_apic.c diff | blob | history
xen/arch/x86/irq.c diff | blob | history
xen/arch/x86/mm.c diff | blob | history
xen/arch/x86/nmi.c diff | blob | history
xen/arch/x86/numa.c diff | blob | history
xen/arch/x86/oprofile/nmi_int.c diff | blob | history
xen/arch/x86/psr.c diff | blob | history
xen/arch/x86/pv/domain.c diff | blob | history
xen/arch/x86/pv/shim.c diff | blob | history
xen/arch/x86/setup.c diff | blob | history
xen/arch/x86/shutdown.c diff | blob | history
xen/arch/x86/spec_ctrl.c diff | blob | history
xen/arch/x86/time.c diff | blob | history
xen/arch/x86/tsx.c diff | blob | history
xen/arch/x86/x86_64/mmconfig-shared.c diff | blob | history
xen/common/argo.c diff | blob | history
xen/common/core_parking.c diff | blob | history
xen/common/debugtrace.c diff | blob | history
xen/common/domain.c diff | blob | history
xen/common/efi/boot.c diff | blob | history
xen/common/grant_table.c diff | blob | history
xen/common/kexec.c diff | blob | history
xen/common/memory.c diff | blob | history
xen/common/page_alloc.c diff | blob | history
xen/common/sched/cpupool.c diff | blob | history
xen/common/sched/credit2.c diff | blob | history
xen/drivers/acpi/tables.c diff | blob | history
xen/drivers/char/console.c diff | blob | history
xen/drivers/cpufreq/cpufreq.c diff | blob | history
xen/drivers/passthrough/amd/iommu_acpi.c diff | blob | history
xen/drivers/passthrough/iommu.c diff | blob | history
xen/drivers/passthrough/pci.c diff | blob | history
xen/drivers/passthrough/vtd/dmar.c diff | blob | history
xen/drivers/passthrough/vtd/quirks.c diff | blob | history
xen/drivers/video/vesa.c diff | blob | history
xen/xsm/flask/flask_op.c diff | blob | history
xen/xsm/xsm_core.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.