Revision tags: OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE OPENBSD_6_2_BASE
|
#
1.6 |
|
18-Jun-2015 |
martynas |
Fix stack shuffle such that sj includes si and the last element actually gets a chance to be reordered.
|
Revision tags: OPENBSD_5_6_BASE OPENBSD_5_7_BASE
|
#
1.5 |
|
23-Jun-2014 |
matthew |
gcc4: emit warning when ignoring alignment constraints
Currently, GCC 4.2 silently ignores the "aligned" attribute for objects allocated on the stack if the specified minimum alignment exceeds the platform's natural stack alignment. This has bitten us in the past, so we shouldn't allow this to continue.
Fixing the "ignores" problem seems hard, so this commit settles for tackling the "silently" problem instead.
ok miod, and possibly guenther and deraadt
|
#
1.4 |
|
06-May-2014 |
martynas |
When the stack protector heuristics doesn't cover a function, leave a little pointer-sized gap before the return value. This protects from common off-by-one type of bugs and costs nothing: the attacker won't be able to overwrite return pointer. Developed at m2k14, thanks for the hackathon!
|
#
1.3 |
|
06-May-2014 |
martynas |
Introduce -fstack-shuffle, which randomizes local stack variables. This will make the environment more hostile and help detect bugs that depend on overrunning one variable into another, with almost no performance cost.
Discussed with Theo at m2k14 hackathon. "oh god yes" tedu@, "oh nice" djm@
|
Revision tags: OPENBSD_5_5_BASE
|
#
1.2 |
|
14-Jan-2014 |
martynas |
Add a new option "-fstack-protector-strong" for GCC4. This includes additional functions to be protected --- those that have local array definitions, or have references to local frame addresses.
Note 1: Han explicitly licensed this under GPLv2 for us. Note 2: Do *not* use this anywhere in "src" Makefiles, as the other GCC doesn't have this option yet (but I'm working on it).
|
#
1.1 |
|
15-Oct-2009 |
robert |
branches: 1.1.1; Initial revision
|