Skip to content

Enable stack protector#1128

Draft
bboilot-ledger wants to merge 2 commits intomasterfrom
bbo/stack_protector
Draft

Enable stack protector#1128
bboilot-ledger wants to merge 2 commits intomasterfrom
bbo/stack_protector

Conversation

@bboilot-ledger
Copy link
Copy Markdown
Contributor

@bboilot-ledger bboilot-ledger commented Aug 27, 2025

Description

Support stack protector (stack canaries) to protect against stack buffer overflows.
Close #120

Changes include

  • Bugfix (non-breaking change that solves an issue)
  • New feature (non-breaking change that adds functionality)
  • Breaking change (change that is not backwards-compatible and/or changes current functionality)
  • Tests
  • Documentation
  • Other (for changes that might not fit in any category)

Breaking changes

This PR enable clang stack protection mechanism. It is a breaking change as it requires clang-19.

Auto cherry-pick in API_LEVEL

If requested to port the commits from this PR on a dedicated API_LEVEL branch,
select the targeted one(s), or add new references if not listed:

[ ] TARGET_API_LEVEL: API_LEVEL_24
[ ] TARGET_API_LEVEL: API_LEVEL_25

This will only create the PR with cherry-picks, ready to be reviewed and merged.

Remember:

  • The merge will ALWAYS be a manual operation.
  • It is possible the cherry-picks don't apply correctly, mainly if previous commits have been forgotten.
  • In case of failure, there is no other solution than redo the operation manually...

@codecov-commenter
Copy link
Copy Markdown

codecov-commenter commented Aug 27, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 91.34%. Comparing base (097a0af) to head (575c2ed).
⚠️ Report is 81 commits behind head on master.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master    #1128   +/-   ##
=======================================
  Coverage   91.34%   91.34%           
=======================================
  Files          36       36           
  Lines        3997     3997           
  Branches      507      507           
=======================================
  Hits         3651     3651           
  Misses        256      256           
  Partials       90       90
Flag Coverage Δ
unittests 91.34% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@ledger-wiz-cspm-secret-detection
Copy link
Copy Markdown

ledger-wiz-cspm-secret-detection Bot commented Feb 9, 2026
edited
Loading

Wiz Scan Summary

Scanner Findings
Data Finding Sensitive Data -
Secret Finding Secrets -
IaC Misconfiguration IaC Misconfigurations -
SAST Finding SAST Findings -
Software Management Finding Software Management Findings -
Total -

View scan details in Wiz

To detect these findings earlier in the dev lifecycle, try using Wiz Code VS Code Extension.

mbrousset-ledger added a commit that referenced this pull request Mar 13, 2026
@mbrousset-ledger
using changes from PR #1128
0f7a0a2
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Enable Stack Smashing Protector (SSP)

2 participants

@bboilot-ledger @codecov-commenter