signalapp/SecureValueRecovery
signalapp/SecureValueRecovery
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
main
SecureValueRecovery/enclave/bin
History
nolanl 28ac367b86
Disable redzone. Our LVI mitigations clobber it. (#20) 
* Disable redzone. Our LVI mitigations clobber it.

This disables the redzone in the gcc compiled SDK, the
cargo compiled enclave, the cargo dependencies, and so forth.

BOLT is modified to fail if any function that gets a
memory indirect jmp mitigation uses the redzone.

The checker is also modified to check and fail the build if
any functions use the redzone that had a memory indirect jmp
mitigation applied.

* Disable redzone. Our LVI mitigations clobber it.

This disables the redzone in the gcc compiled SDK, the
cargo compiled enclave, the cargo dependencies, and so forth.

BOLT is modified to fail if any function that gets a
memory indirect jmp mitigation uses the redzone.

The checker is also modified to check and fail the build if
any functions use the redzone that had a memory indirect jmp
mitigation applied.

Co-authored-by: Nolan Leake <nolan@sigbus.net>
2020-07-10 10:09:47 -07:00
..
funcs_with_memindjmp Disable redzone. Our LVI mitigations clobber it. (#20) 2020-07-10 10:09:47 -07:00
gc_functions Big Bang 2019-12-19 11:09:53 -08:00
lvi_checker Disable redzone. Our LVI mitigations clobber it. (#20) 2020-07-10 10:09:47 -07:00
sgx-gdb Big Bang 2019-12-19 11:09:53 -08:00