Livepatch: support for livepatching CET functions

[PATCH 0/2] Livepatch: support for livepatching CET functions

Bjoern Doebel posted 2 patches 2 years, 1 month ago

Download series mbox

Patches applied successfully (tree, apply log)
git fetch https://gitlab.com/xen-project/patchew/xen tags/patchew/cover.1646653825.git.doebel@amazon.de

Test gitlab-ci passed

xen/arch/x86/livepatch.c | 63 +++++++++++++++++++++++++++++++++++-----
xen/common/livepatch.c   |  4 +--
2 files changed, 57 insertions(+), 10 deletions(-)

Expand all Fold all

[PATCH 0/2] Livepatch: support for livepatching CET functions

Posted by Bjoern Doebel 2 years, 1 month ago

This series enables support for livepatching functions compiled with
Intel CET support where we have to make sure we leave a potential
leading ENDBR64 instruction intact on livepatch application.

The series also requires a change to generic livepatching code: we need
to make sure that the address of the patched function is known at the
time Xen tries to verify the livepatch for applicability, hence we need
to resolve this address before verifying the patch.

Bjoern Doebel (2):
  Livepatch: resolve old address before function verification
  xen/x86: Livepatch: support patching CET-enhanced functions

 xen/arch/x86/livepatch.c | 63 +++++++++++++++++++++++++++++++++++-----
 xen/common/livepatch.c   |  4 +--
 2 files changed, 57 insertions(+), 10 deletions(-)

-- 
2.32.0




Amazon Development Center Germany GmbH
Krausenstr. 38
10117 Berlin
Geschaeftsfuehrung: Christian Schlaeger, Jonathan Weiss
Eingetragen am Amtsgericht Charlottenburg unter HRB 149173 B
Sitz: Berlin
Ust-ID: DE 289 237 879