Kees Cook c61f13eaa1 gcc-plugins: Add structleak for more stack initialization ...

This plugin detects any structures that contain __user attributes and
makes sure it is being fully initialized so that a specific class of
information exposure is eliminated. (This plugin was originally designed
to block the exposure of siginfo in CVE-2013-2141.)

Ported from grsecurity/PaX. This version adds a verbose option to the
plugin and the Kconfig.

Signed-off-by: Kees Cook <keescook@chromium.org>

2017-01-18 12:02:35 -08:00

6.8 KiB

Raw Blame History

View Raw