diff options
author | Ard Biesheuvel <ard.biesheuvel@linaro.org> | 2017-03-07 12:25:17 +0100 |
---|---|---|
committer | Ard Biesheuvel <ard.biesheuvel@linaro.org> | 2017-03-16 14:02:51 +0000 |
commit | 015ac218cfef6d399b05996e4f6072c7cd195861 (patch) | |
tree | 893e5db7e2cf5f40e1178113823350a24150bbe3 /Include | |
parent | 6a2aff6f395725de2d29007fdf65a4cd02115710 (diff) |
Platforms/ARM: enable memory protection featuresarmlt-20170317-001
This enables the recently added and/or enhanced memory protection
features in upstream EDK2:
- strict code/data separation PE/COFF sections so that mappings can
be made either read-only or non-executable
- remove exec permissions from all other (i.e., non-code) regions (as
far as is feasible without breaking GRUB)
- remap the DXE stack as non-executable before entering DxeCore
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Tested-by: Ryan Harkin <ryan.harkin@linaro.org>
Reviewed-by: Leif Lindholm <leif.lindholm@linaro.org>
Diffstat (limited to 'Include')
0 files changed, 0 insertions, 0 deletions