gcc -fstack-protector does not throw error

Question

Does someone know why the following lines of code throws a *** stack smashing detected *** error

#include <stdio.h>
#include <stdlib.h>
#include <string.h>

int main(int argc, char **argv)
{
  char x[16];
  strcpy(x,"aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa");
}

but the following code does not throw it?

#include <stdio.h>
#include <stdlib.h>
#include <string.h>

int main(int argc, char **argv)
{
    char x[16];
    x[17] = 'a';
}

Thank you!!

"Undefined" means that *anything* may happen. The compiler is not obligated to emit code that will crash, and it is not obligated to emit code that will actually execute the out-of-bounds accesses. *Anything* can happen, and the compiler is not required to be consistent about it. For example, my `gcc` with `-O3` completely optimizes away the out-of-bounds accesses and thus avoids even emitting stack-cookie code at all. — EOF, Oct 14 '18 at 14:37

score 3 · Accepted Answer · answered Oct 13 '18 at 18:41

3

Overwriting x[17] doesn't overwite the canary-value put before the return address by gcc.

answered Oct 13 '18 at 18:41

Swordfish

12,971
3
21
43

And could you explain me why x[17] doesn't overwrite it? @Swordfish – ronce96 Oct 13 '18 at 20:06
You'd have to look at the assembly output ... how gcc manages the stack. – Swordfish Oct 13 '18 at 20:08

gcc -fstack-protector does not throw error

1 Answers1