-fstack-check vs -fstack-clash-protection

To: tech-pkg%NetBSD.org@localhost, tech-toolchain%NetBSD.org@localhost
Subject: -fstack-check vs -fstack-clash-protection
From: Thomas Klausner <wiz%NetBSD.org@localhost>
Date: Sat, 23 Jul 2022 19:20:49 +0200

Hi!

pkgsrc's PKGSRC_USE_STACK_CHECK setting adds -fstack-check to the
compiler flags.

Corresponding about a build failure with an upstream, it was pointed
out to me that even the gcc man page documents this as:

          -fstack-check= is designed for Ada's needs to detect
           infinite recursion and stack overflows.  specific is an
           excellent choice when compiling Ada code.  It is not
           generally sufficient to protect against stack-clash
           attacks.  To protect against those you want
           -fstack-clash-protection.

The documentation for that says:

           Most targets do not fully support stack clash protection.

Does anyone know the state of -fstack-clash-protection on NetBSD?

Should we switch from -fstack-check to -fstack-clash-protection in
pkgsrc, when PKGSRC_USE_STACK_CHECK is set?

Cheers,
 Thomas

Follow-Ups:
- Re: -fstack-check vs -fstack-clash-protection
  - From: Lloyd Parkes

Prev by Date: Re: hiding pkg-config
Next by Date: daily pkgsrc CVS update output
Previous by Thread: ffmpeg4 pkgconfig files - not in alternatives?
Next by Thread: Re: -fstack-check vs -fstack-clash-protection
Indexes:

Home | Main Index | Thread Index | Old Index