 Control-flow integrity

Control-flow integrity (CFI) is a security technique that protects computer programs from control-flow hijacking attacks, such as buffer overflows, return-oriented programming (ROP), and other forms of exploitation that manipulate a program's control flow. The main goal of CFI is to ensure that a program executes only in an intended manner by validating that control-flow transfers (like function calls and returns) happen according to a predefined, legitimate control-flow graph (CFG).