Current hardening measures for UEFI binaries #61
RaitoBezarius
started this conversation in
General
Replies: 1 comment 4 replies
-
last time a looked uefi had no shared library concept. hence relocations/bindnow simply don't apply. |
Beta Was this translation helpful? Give feedback.
4 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hello there,
I am working in NixOS to bring native UEFI cross-compilation (using LLVM lld-link), we got somewhere really nice, but we discovered that our default hardening measures do not really apply (obviously, ELF are different): read-only relocations, bindnow, etc.
Does anyone know if there's any plan to support better hardening measures for such binaries? This seems like an easy thing to get and important one.
Thank you!
Beta Was this translation helpful? Give feedback.
All reactions