Linux CFI (Control-flow integrity)技术相关资料汇总
- CFI/CFG 安全防护原理详解
- 介绍:https://en.wikipedia.org/wiki/Control-flow_integrity
- https://hikunpeng.csdn.net/65d6c78fd4226e0eb42750ce.html
- Indirect branch tracking
- Shadow stack
- clang的做法:https://clang.llvm.org/docs/ShadowCallStack.html#shadowcallstack
- 内核文档:https://lwn.net/Kernel/Index/#Security-Control-flow_integrity
- 内核文档:Control-flow integrity for the kernel
- 内核补丁
- Add support for Clang CFI
- KCFI support
- Kernel CFI failure实例分析
- Linux内核漏洞攻防
- gcc CFI控制流完整性保护
- Control Flow Integrity in the Android kernel
- LLVM:Control Flow Integrity
- Android: Kernel control flow integrity
- LTO:https://llvm.org/docs/LinkTimeOptimization.html
- What is CFI?
本文来自博客园,作者:摩斯电码,未经同意,禁止转载