Re: GCC stack smashing protection

To: NetBSD Users Mailing List <netbsd-users%NetBSD.org@localhost>
Subject: Re: GCC stack smashing protection
From: Jukka Ruohonen <jruohonen%iki.fi@localhost>
Date: Fri, 28 Aug 2009 06:40:53 +0300

On Thu, Aug 27, 2009 at 05:55:02PM -0700, Michael Litchard wrote:
> So, I've got this in my /etc/mk.conf.
> USE_SSP=yes
> 
> 
> And I've rebuilt 5.0.1 kernel and userland. How can i verify that the
> gcc stack smashing protection is being used?

If you see SSP-related parameters being passed for the compiler during the
build process, then the protection should be in use.


#include <string.h>

static void
foo(char *str)
{
        char buf[16];

        strcpy(buf, str);
}

int
main()
{
        foo("smashing the stack for fun and profit");

        return 0;
}

$ gcc -Wall -fstack-protector-all foo.c -o foo
$ ./foo
$ egrep overflow /var/log/messages
$ Aug 28 06:32:38 marx foo: stack overflow detected; terminated


But I don't know if there is some generic way to test this. ATF?

- Jukka.

Follow-Ups:
- Re: GCC stack smashing protection
  - From: Hugo Silva

References:
- GCC stack smashing protection
  - From: Michael Litchard

Prev by Date: GCC stack smashing protection
Next by Date: Re: POSIX_VERSION for NetBSD
Previous by Thread: GCC stack smashing protection
Next by Thread: Re: GCC stack smashing protection
Indexes:

Home | Main Index | Thread Index | Old Index