王亚刚, 曹耀彬, 王萌. 基于GCC插件的堆栈保护技术研究[J]. 微电子学与计算机, 2018, 35(1): 133-136.
引用本文: 王亚刚, 曹耀彬, 王萌. 基于GCC插件的堆栈保护技术研究[J]. 微电子学与计算机, 2018, 35(1): 133-136.
WANG Ya-gang, CAO Yao-bin, WANG Meng. Research on Stack Protection Technology Based on GCC Plugin[J]. Microelectronics & Computer, 2018, 35(1): 133-136.
Citation: WANG Ya-gang, CAO Yao-bin, WANG Meng. Research on Stack Protection Technology Based on GCC Plugin[J]. Microelectronics & Computer, 2018, 35(1): 133-136.

基于GCC插件的堆栈保护技术研究

Research on Stack Protection Technology Based on GCC Plugin

  • 摘要: 缓冲区溢出攻击是计算机中最主要的漏洞之一, 在所有的缓冲区溢出中主要攻击的区域是程序的堆栈, 为了改进GCC编译器对于基于字节猜测的堆栈溢出防护的不足, 在GCC提供的最新插件基础上, 提出了一种堆栈保护增强插件, 并将其作为GCC编译器后端的一个编译优化过程.实验结果表明, 新增的编译优化遍, 在一定程度上增加了攻击者对canary暴力破解的难度, 有效地缓解了GCC编译器堆栈防护的不足.

     

    Abstract: Buffer overflow attack is one of the main vulnerabilities in the computer.In all areas, the most likely to attack is the program stack.In order to enforce the GCC stack overflow protection, which is not enough to defense the byte guess attack.On the basis of the latest plug-in provided by GCC, a stack protection enhancement plug-in is proposed and used as a compilation optimization process for the back end of the GCC compiler.The final experimental results show that the new compiler optimization pass, to some extent, increasing the difficulty of the attacker to guessing the canary, which using byte for byte brute force attack.And the plugin can effectively alleviate the shortage of the GCC stack smashing protection.

     

/

返回文章
返回