You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I am facing an issue with an iOS application that is purely Swift, but uses Objective-C libraries. When I perform a check with otool for the presence of a stack canary no output is returned. Unfortunately, adding fstack-protector-all to Other C Flags / Other C++ Flags did not solve the issue.
However, I would argue that this offers no security improvement whatsoever and its only intent is to pass vulnerability assessments.
Digging a bit deeper (swiftc --help-hidden) reveals the -stack-check flag but adding it did not seem to change anything. (It might be enabled by defautt?)
Additionally, I have noticed that it seems like swiftpm projects have the stack canary enabled again, without any particular flag being used, which also contributes to my confusion.
As a result, any help or input in this regard would be greatly appreciated, especially on how the flag can be reliably added to projects.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
I am facing an issue with an iOS application that is purely
Swift, but usesObjective-Clibraries. When I perform a check withotoolfor the presence of a stack canary no output is returned. Unfortunately, addingfstack-protector-alltoOther C Flags/Other C++ Flagsdid not solve the issue.A way to get the desired outcome is to add a dummy
Obj-Cas described here on StackOverflow:https://stackoverflow.com/questions/38564924/swift-and-stack-smashing-protection/60151692#60151692
However, I would argue that this offers no security improvement whatsoever and its only intent is to pass vulnerability assessments.
Digging a bit deeper (
swiftc --help-hidden) reveals the-stack-checkflag but adding it did not seem to change anything. (It might be enabled by defautt?)Additionally, I have noticed that it seems like
swiftpmprojects have the stack canary enabled again, without any particular flag being used, which also contributes to my confusion.As a result, any help or input in this regard would be greatly appreciated, especially on how the flag can be reliably added to projects.
Beta Was this translation helpful? Give feedback.
All reactions