On Fri, Apr 03, 2020 at 07:29:38AM +0200, joao@xxxxxxxxxxxxxxxxxx wrote: > FWIW, In case someone has any interest in looking into it, a month ago I uploaded the old sources for a kernel CFI prototype I implemented back in 2015/2016 (kCFI) here: https://github.com/kcfi/kcfi Great; thanks! > As is, the code supports kernel 3.19. It is no longer maintained and, given that the upstream Linux kernel may have its own CFI scheme somewhat soon, I don't believe that there is much sense in trying to forward-port it or anything. Either way, if it is useful for anyone, there you go. Weren't there updates make to LLVM to provide a more fine-grained bucketization of the function prototypes? (i.e. instead of all "void func(void)" being in one bucket, they got chopped into more buckets?) -- Kees Cook
