About
Shadow stacks are a security feature meant to detect/prevent classes of attacks where a malicious actor has gained control over a function's return pointer. Shadow stack mechanisms typically need a combination of compiler, library, dynamic loader and kernel support, they often require special support for JITs as well. This work item is only tracking the core LLVM functionality needed to support shadow stacks. Shadow stacks are seen as a blocking issue for Android on RISC-V.
...
| Page Properties | ||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Updates
- Implemented the linking policy in LLD for Zicfiss and Zicfilp. The draft can be found here: https://github.com/SuHo-llrr/llvm-project/pull/1/commits
The patch also includes the emission of ELF .note.gnu.property section and llvm-readobj changes to display the content of the section.
There are ongoing discussions on the linking policy, and we update the implementation when the decision is made.
Besides, we will also add test cases for upstreaming.
- Working on adding linking policy for Zicfiss in lld. We will align binutils implementation by SiFive (Thank Kito and Hau for the reference implementation).
To implement the linking policy, it requires feature information recorded in the .note.gnu.property section. Thank Kito again for the ABI spec.
https://github.com/riscv-non-isa/riscv-elf-psabi-doc/commit/7367425eee8f36bf204ce86d90db7002b5de1e6c
...