Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <202004031626.B2FDF354@keescook>
Date: Fri, 3 Apr 2020 16:28:10 -0700
From: Kees Cook <keescook@...omium.org>
To: "joao@...rdrivepizza.com" <joao@...rdrivepizza.com>
Cc: kernel-hardening@...ts.openwall.com, vasileios_kemerlis@...wn.edu,
	sandro@...unicamp.br
Subject: Re: kCFI sources

On Fri, Apr 03, 2020 at 07:29:38AM +0200, joao@...rdrivepizza.com wrote:
> FWIW, In case someone has any interest in looking into it, a month ago I uploaded the old sources for a kernel CFI prototype I implemented back in 2015/2016 (kCFI) here: https://github.com/kcfi/kcfi

Great; thanks!

> As is, the code supports kernel 3.19. It is no longer maintained and, given that the upstream Linux kernel may have its own CFI scheme somewhat soon, I don't believe that there is much sense in trying to forward-port it or anything. Either way, if it is useful for anyone, there you go.

Weren't there updates make to LLVM to provide a more fine-grained
bucketization of the function prototypes? (i.e. instead of all "void
func(void)" being in one bucket, they got chopped into more buckets?)

-- 
Kees Cook

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.