[fpc-devel] OT: Code generation
nickysn at gmail.com
Fri Apr 11 10:30:54 CEST 2014
On 04/11/2014 11:22 AM, Mark Morgan Lloyd wrote:
> Knowing that there are some good compiler guys in here: does anybody
> remember a paper and set of patches for GCC that randomises register
> allocation and makes random choices for the code generator (e.g. zero
> a register either by xor a,a or sub a,a etc.) in order to give buffer
> overflows less to bite on? Any URLs etc. would be much appreciated.
> Could such a thing be done for FPC? :-)
For FPC I think it's better for security critical code to use only the
managed datastructures (strings, dynarrays) and compile it with range
checking on (and perhaps even overflow checking).
More information about the fpc-devel