projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c9e0a06) | patch
xsm: CFI hardening
authorAndrew Cooper <andrew.cooper3@citrix.com>
Fri, 29 Oct 2021 20:26:04 +0000 (21:26 +0100)
committerAndrew Cooper <andrew.cooper3@citrix.com>
Wed, 23 Feb 2022 15:33:43 +0000 (15:33 +0000)
commita096eaf12a0d558240c937fe44176aaa98b750a7
treee2a1e9b080b0c8373aaed1cb8b67b716b201d628tree | snapshot
parentc9e0a06259aff799b57b3180ba815081c914f4e8commit | diff
xsm: CFI hardening

Control Flow Integrity schemes use toolchain and optionally hardware support
to help protect against call/jump/return oriented programming attacks.

Use cf_check to annotate function pointer targets for the toolchain.

Signed-off-by: Andrew Cooper <andrew.cooper3@citrix.com>
Reviewed-by: Daniel P. Smith <dpsmith@apertussolutions.com>
xen/include/xsm/dummy.h diff | blob | history
xen/xsm/flask/flask_op.c diff | blob | history
xen/xsm/flask/hooks.c diff | blob | history
xen/xsm/flask/private.h diff | blob | history
xen/xsm/silo.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.