Skip to content

zhangtong16/cfi

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
include
include
 
 
scripts
scripts
 
 
src
src
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
README.md
README.md
 
 
mlta_run.sh
mlta_run.sh
 
 
run.sh
run.sh
 
 

Repository files navigation

Type-based Control Flow Integrity

This is a Type-based Control Flow Integrity enforcement implementation build on top of LLVM compiler infrastructure.

We use the skeleton of llvm-tutor.

This enforcement should protect you from corrupted code pointers. However, it actually is a coarse-grain implementation because of its Naïve type analysis.

Currently, there are two phases:

  1. Type Analysis for ICalls. We currently use FLTA, which means First Layer Type Analysis , to analyze the type of icalls, and resolve the candidate targets set.

The concepts of FLTA is from Where Does It Go?

  1. Instrumentation for Runtime Check. Before every icalls, we insert checks to determine the target is in the candidate sets.

Features

  • FLTA
  • MLTA
  • Shadow Stack
  • Protection of Metadata
  • Runtime Check

Usage

  • Modify LT_LLVM_INSTALL_DIR in CMakeList.txt to your llvm directory
  • Modify run.sh, choose your bitcode file

LLVM bicode file which we use is generated by wllvm.

About

A naive CFI implementation

Topics

cfi llvm-pass control-flow-integrity

Resources

Readme
Activity

Stars

4 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages