projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b22f4b6) | patch
xen/iommu: CFI hardening
authorAndrew Cooper <andrew.cooper3@citrix.com>
Fri, 29 Oct 2021 17:30:29 +0000 (18:30 +0100)
committerAndrew Cooper <andrew.cooper3@citrix.com>
Wed, 23 Feb 2022 15:33:43 +0000 (15:33 +0000)
commit991a06d71a73cae097a55e60f38c2ae38ef36e10
treee09ae2a9b75afe7ded27e306d359684006388643tree | snapshot
parentb22f4b696d3e7b811ed976add0b92f72b590dec1commit | diff
xen/iommu: CFI hardening

Control Flow Integrity schemes use toolchain and optionally hardware support
to help protect against call/jump/return oriented programming attacks.

Use cf_check to annotate function pointer targets for the toolchain.

AMD's parse_ppr_log_entry() has no external callers, so becomes static.

Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Acked-by: Jan Beulich <jbeulich@suse.com>
12 files changed:
xen/common/compat/memory.c diff | blob | history
xen/drivers/passthrough/amd/iommu.h diff | blob | history
xen/drivers/passthrough/amd/iommu_init.c diff | blob | history
xen/drivers/passthrough/amd/iommu_intr.c diff | blob | history
xen/drivers/passthrough/amd/iommu_map.c diff | blob | history
xen/drivers/passthrough/amd/pci_amd_iommu.c diff | blob | history
xen/drivers/passthrough/pci.c diff | blob | history
xen/drivers/passthrough/vtd/dmar.c diff | blob | history
xen/drivers/passthrough/vtd/extern.h diff | blob | history
xen/drivers/passthrough/vtd/intremap.c diff | blob | history
xen/drivers/passthrough/vtd/iommu.c diff | blob | history
xen/drivers/passthrough/vtd/qinval.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.