[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v3 29/70] xen/misc: CFI hardening


  • To: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
  • From: Jan Beulich <jbeulich@xxxxxxxx>
  • Date: Wed, 23 Feb 2022 11:25:15 +0100
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=suse.com; dmarc=pass action=none header.from=suse.com; dkim=pass header.d=suse.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=uyq5jRdiVF1X+9pbX0NPbLU4H6z7c+4VAkBhIZM4KEA=; b=VkeRRzgnQ8lPys55FEObCuqGdJli9uv0tzq4OH6xioOS3WvBsvV7jl1+ZKLsvUSVxt8Az8GH8Ao9PGRs5w6oN4BSy4G+fECxvU8v+S40E178iDuaNpauvHdUGpQghK5cgUxZ8csLXf38hnAeD4alEMVbc0hSdxjUIXix/UjRLmlEo1o4a7vMBji/EGQdaUNOC3E9Ay6xC5Drb/bx45P3aqL4h7aA8+qumEiombwU+uv5fZvzsz7w3kVmYhNe7B75aXaBAr/Mb8KDo4U7MV4C0i/4+yM0XUE5SjAEkSCBxZUnTc69CwcMFeeB6Dqhz+dSvhmZ2AixQdpe/50QqpdC5A==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dgBy7Vic4U/GQSnsXjBhdVHnh6VZ0jdCuYbIraSKnT29AJmQEjRGIQYQfO2P8rgUcXNqekZOKEZh1e4LuTehUHMlJ2hWNJlhIFASCUn1ZkOYILbzxI1IEH/xmXCLTsYprPv7BDjMcBu4Js3SiyfhOksfWKB1gxh5sz5ZpsD7CupMc0R1nxhz4gMsIODbEJRxQL6W5+F6AiCvWr+crnT/51wSEBTKy90sSD24Krrv78Av4lD69qvk195xoc2JUXZvtTXsmkDapf5/S9DCs6AkxHbcXkDAJIfs3Z/M8dKI/4Ha1eWNj2OCGFpoK5zNh783c/5T7RCjT/wkr3y0xqU32g==
  • Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=suse.com;
  • Cc: Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>
  • Delivery-date: Wed, 23 Feb 2022 10:25:29 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 22.02.2022 16:26, Andrew Cooper wrote:
> Control Flow Integrity schemes use toolchain and optionally hardware support
> to help protect against call/jump/return oriented programming attacks.
> 
> Use cf_check to annotate function pointer targets for the toolchain.
> 
> Signed-off-by: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
> Acked-by: Jan Beulich <jbeulich@xxxxxxxx>
> ---
> v3
>  * Annotations for gcov

Hmm, ...

> ---
>  xen/arch/x86/mm.c                        | 6 ++++--
>  xen/arch/x86/setup.c                     | 4 ++--
>  xen/common/coverage/gcov.c               | 8 ++++----

... what about llvm.c then?

Jan




 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.