Fortified system functions

QNX SDP8.0QNX OS System Security GuideAPIConfiguration

QNX OS fortified system functions are designed to detect out-of-bounds memory accesses by performing lightweight parameter validation at compile-time, runtime, or both.

If a component does not currently use fortified system functions, you need to recompile it to make use of this feature. See Fortified system functions in Security features for developers.

If the complier has recorded the command line arguments it was invoked with, you can view the .GCC.command.line ELF section to determine whether a binary was built to use fortified system functions. See Auditing Builds in the Programmer's Guide.

If the executable or library has been built to use fortified system functions, the command line arguments recorded in the .GCC.command.line section should include the following information:

  • a definition of the _FORTIFY_SOURCE feature test macro with a value of 1 or 2
  • a compatible optimization setting (see Fortified system functions in Security features for developers)

Page updated: