projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 56773df) | patch
xen: CFI hardening for continue_hypercall_on_cpu()
authorAndrew Cooper <andrew.cooper3@citrix.com>
Thu, 28 Oct 2021 09:56:49 +0000 (10:56 +0100)
committerAndrew Cooper <andrew.cooper3@citrix.com>
Wed, 23 Feb 2022 15:33:43 +0000 (15:33 +0000)
commit19804ed02902e78c82c6c97af8bd5ec348d5f071
treeb2481ad37cb14c79ffabee2d1887c458676eb22dtree | snapshot
parent56773dfd5d89a0291249694974d26c624c14421ecommit | diff
xen: CFI hardening for continue_hypercall_on_cpu()

Control Flow Integrity schemes use toolchain and optionally hardware support
to help protect against call/jump/return oriented programming attacks.

Use cf_check to annotate function pointer targets for the toolchain.

Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Acked-by: Jan Beulich <jbeulich@suse.com>
xen/arch/x86/acpi/power.c diff | blob | history
xen/arch/x86/cpu/microcode/core.c diff | blob | history
xen/arch/x86/include/asm/pv/shim.h diff | blob | history
xen/arch/x86/include/asm/smp.h diff | blob | history
xen/arch/x86/platform_hypercall.c diff | blob | history
xen/arch/x86/pv/shim.c diff | blob | history
xen/arch/x86/smp.c diff | blob | history
xen/arch/x86/sysctl.c diff | blob | history
xen/common/core_parking.c diff | blob | history
xen/common/kexec.c diff | blob | history
xen/common/sched/cpupool.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.