Jeff Law <l...@redhat.com> writes: >> If you build sth as part of GCC then why is it a plugin in the first place? > I think we want plugins for domain-specific analysis. Having a > repository for well developed checkers makes sense to me, particularly > for checkers which are useful across projects. > > One such checker would be Aldy's unencrypted function pointer checker > which finds unencrypted function pointers living in memory (which are > ripe for exploitation by hackers). It's currently most useful for > glibc which has policies WRT unencrypted function pointers, but could > well be used by other projects.
FYI: https://developers.redhat.com/blog/2017/03/17/diagnosing-function-pointer-security-flaws-with-a-gcc-plugin/
