Skip to content

Compiler attributes for improved security #201

@siddhesh

Description

@siddhesh

A number of compiler attributes (e.g. alloc_size, malloc, access, nonnull) provide additional information to the compiler to allow it to (1) detect potentially undefined behaviour and (2) optimize code. These often end up in the win-win category where the compiler is able to improve performance as well as security. I had documented a couple of them in an article in the past in a narrow scope, but there's scope for a more comprehensive document. There are some caveats to their usage though, so it's likely not a matter of simply listing them.

Would a new document describing these attributes and how OSS developers could use them with best effect be a useful addition to this project?

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions