Discussion on ROP Mitigation Measures [-fzero-call-used-regs=all]

Hello, Following our previous discussion , I conducted further experiments using the -fzero-call-used-regs=all parameter in gcc-13.2.0 and delved deeper into the ROP mitigation mechanisms implemented during the compilation phase of these programs.

ROP Exploitation in Programs Compiled with -fzero-call-used-regs Parameter

Hello, I am using the -fzero-call-used-regs=all parameter in gcc 13.2.0 to compile the isc-dhcp project in order to observe its level of protection against ROP attacks. After completing the compilation, we noticed that almost every "pop" instruction following