|
Revision tags: OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE OPENBSD_6_2_BASE
|
|
| #
1.6 |
|
18-Jun-2015 |
martynas |
Fix stack shuffle such that sj includes si and the last element actually
gets a chance to be reordered.
|
|
Revision tags: OPENBSD_5_6_BASE OPENBSD_5_7_BASE
|
|
| #
1.5 |
|
23-Jun-2014 |
matthew |
gcc4: emit warning when ignoring alignment constraints
Currently, GCC 4.2 silently ignores the "aligned" attribute for
objects allocated on the stack if the specified minimum alignment
exceeds the platform's natural stack alignment. This has bitten us in
the past, so we shouldn't allow this to continue.
Fixing the "ignores" problem seems hard, so this commit settles for
tackling the "silently" problem instead.
ok miod, and possibly guenther and deraadt
|
| #
1.4 |
|
06-May-2014 |
martynas |
When the stack protector heuristics doesn't cover a function, leave
a little pointer-sized gap before the return value. This protects
from common off-by-one type of bugs and costs nothing: the attacker
won't be able to overwrite return pointer. Developed at m2k14,
thanks for the hackathon!
|
| #
1.3 |
|
06-May-2014 |
martynas |
Introduce -fstack-shuffle, which randomizes local stack variables.
This will make the environment more hostile and help detect bugs
that depend on overrunning one variable into another, with almost
no performance cost.
Discussed with Theo at m2k14 hackathon. "oh god yes" tedu@, "oh nice" djm@
|
|
Revision tags: OPENBSD_5_5_BASE
|
|
| #
1.2 |
|
14-Jan-2014 |
martynas |
Add a new option "-fstack-protector-strong" for GCC4. This includes
additional functions to be protected --- those that have local array
definitions, or have references to local frame addresses.
Note 1: Han explicitly licensed this under GPLv2 for us.
Note 2: Do *not* use this anywhere in "src" Makefiles, as the other
GCC doesn't have this option yet (but I'm working on it).
|
| #
1.1 |
|
15-Oct-2009 |
robert |
branches: 1.1.1;
Initial revision
|