Am 2024-11-17 19:28, schrieb Dimitry Andric:
Last but not least, -fstack-clash-protection might be useful, but I
think it might need some additional runtime support? E.g. in libc?
What I found so far is that the kernel needs to have support for stack
guard pages (which we have).
https://rev
Am 2024-11-17 19:28, schrieb Dimitry Andric:
On 17 Nov 2024, at 16:30, Alexander Leidinger
wrote:
Hi,
after reading
https://security.googleblog.com/2024/11/retrofitting-spatial-safety-to-hundreds.html
https://libcxx.llvm.org/Hardening.html
https://best.openssf.org/Compiler-Hardeni
On 17 Nov 2024, at 16:30, Alexander Leidinger wrote:
>
> Hi,
>
> after reading
>
> https://security.googleblog.com/2024/11/retrofitting-spatial-safety-to-hundreds.html
>https://libcxx.llvm.org/Hardening.html
>
> https://best.openssf.org/Compiler-Hardening-Guides/Compiler-Options-Hard
Hi,
after reading
https://security.googleblog.com/2024/11/retrofitting-spatial-safety-to-hundreds.html
https://libcxx.llvm.org/Hardening.html
https://best.openssf.org/Compiler-Hardening-Guides/Compiler-Options-Hardening-Guide-for-C-and-C++.html
I played around a bit with some of t
