There was a time when I tried to reproduce a buffer overflow problem when I learned about these compilation options. I was experimenting on Ubuntu 12.04, and the GCC version was 4.6.3. What I did was simple:
| code is as follows | copy code |
| #include <stdio.h> int main (void) printf ("N Enter the name n"); gets (str);//Used gets () to cause buffer overflow printf ("N len = [%d] n", Len); len = strlen (str); return 0; |
|
In the code above, I intentionally used the gets () function to receive the string, then calculate the length of the string and output it to standard output-The default is the screen. The idea here is to enter a string of more than 10 lengths, and since the gets () function does not detect the array bounds, it will write the characters to an address other than 10 so that a buffer overflow occurs. After I run the program, the results are as follows:
| The code is as follows | Copy Code |
| $./stacksmash Enter the name Len = [0] Len of String entered is: [12] |
|
To my surprise, the operating environment can detect a buffer overflow situation. You can see the "Stack Overflow" (Stack smashing detected) information on the output. This prompted me to explore how the buffer overflow was detected.
When I explored the cause, I found a compilation option for GCC:-fstack-protector, here's a description of this option:
| The code is as follows | Copy Code |
-fstack-protector |
|
When this option is enabled, the compiler generates additional code to detect buffer overflows, such as stack overflow attacks. This is done by adding a protection variable to the defective function. This includes functions that are called to alloca, and functions that have more than 8 byte buffers. When this function is executed, the protection variable is initialized and the protection variable is detected when the function exits. If the detection fails, an error message is exported and the program exits.
! Note: in Ubuntu 6.10 and later versions, if the-fno-fstack-protector,-nostdlib, or-ffreestanding options are not specified at compile time, this option is for c,c++,objc,objc++ The language is enabled by default.
So, you'll find that GCC has detected a buffer overflow problem by inserting additional code. The next thing I think about is that I've never added this compilation option at compile time, how is this feature enabled? Then I read the last two lines, and on the Ubuntu6.10 version, this feature has been enabled by default.
Next, I decided to use the-fno-fstack-protector option to cancel this stack overflow detection feature. I run the same code after compiling it and use the same input as before, and here's what I do and how it works:
| The code is as follows | Copy Code |
$ gcc-wall-fno-stack-protector Stacksmash.c-o Stacksmash Enter the name Len = [26214] Len of String entered is: [12] |
|
As you can see, once this compilation option is used (as explained in the previous compilation options, this-fstack-protector will not be turned on by default), with the same input, the running environment simply cannot detect a buffer overflow problem, and Len's value has been corrupted
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
