wanghenshui
commented
1 day ago https://libcxx.llvm.org/Hardening.html 加固详细介绍
https://security.googleblog.com/2024/11/retrofitting-spatial-safety-to-hundreds.html
https://bughunters.google.com/blog/6368559657254912/llvm-s-rfc-c-buffer-hardening-at-google
加固只有0.3% 1%性能损失?
While these new runtime safety checks improve security, they add additional runtime overhead and can negatively impact performance. We studied the performance degradation for Google workloads and Feedback Direct Optimization (FDO) proved to be effective in minimizing it. As an example, enabling the hardened libc++, without any FDO, in a representative Google fleet workload added a ~0.9% queries per second (QPS) regression and a ~2.5% latency regression. When properly using FDO, we measured a ~65% reduction in QPS overhead and a ~75% reduction in latency overhead.
存在问题
加固覆盖的还是有遗漏,目前还在修复 有的加固存在ABI影响,不方便推广
mapleFU
Some Of My Experience About Linking C/C++ On Linux 符号链接问题 https://coyorkdow.github.io/linking/2024/11/17/C++_linking_linux.html 简单来说,未定义/重定义