|
|
Log in / Subscribe / Register

GCC security features from AdaCore

[Posted January 25, 2024 by corbet]

The AdaCore blog describes some hardening features contributed to GCC for the GCC 14 release.

With -fharden-control-flow-redundancy, the compiler now verifies, at the end of functions, whether the traversed basic blocks align with a legitimate execution path. The purpose of this protective measure is to detect and thwart attacks attempting to infiltrate the middle of functions, thereby enhancing the overall security posture of the compiled code.

to post comments

Related: OpenSSF Compiler Options Hardening Guide for C and C++

Posted Jan 26, 2024 14:07 UTC (Fri) by david.a.wheeler (subscriber, #72896) [Link]

You might also find this interesting:
OpenSSF's "Compiler Options Hardening Guide for C and C++"

https://best.openssf.org/Compiler-Hardening-Guides/Compil...


Copyright © 2024, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds