8924560094
Switch from Clang's original forward-edge control-flow integrity implementation to -fsanitize=kcfi, which is better suited for the kernel, as it doesn't require LTO, doesn't use a jump table that requires altering function references, and won't break cross-module function address equality. Signed-off-by: Sami Tolvanen <samitolvanen@google.com> Reviewed-by: Kees Cook <keescook@chromium.org> Tested-by: Kees Cook <keescook@chromium.org> Tested-by: Nathan Chancellor <nathan@kernel.org> Acked-by: Peter Zijlstra (Intel) <peterz@infradead.org> Tested-by: Peter Zijlstra (Intel) <peterz@infradead.org> Signed-off-by: Kees Cook <keescook@chromium.org> Link: https://lore.kernel.org/r/20220908215504.3686827-6-samitolvanen@google.com |
||
---|---|---|
.. | ||
debug_kmemleak.c | ||
decompress.c | ||
internal.h | ||
kallsyms.c | ||
Kconfig | ||
kdb.c | ||
livepatch.c | ||
main.c | ||
Makefile | ||
procfs.c | ||
signing.c | ||
strict_rwx.c | ||
sysfs.c | ||
tracking.c | ||
tree_lookup.c | ||
version.c |