Fortified system functions
QNX OS fortified system functions are designed to detect out-of-bounds memory accesses by performing lightweight parameter validation at compile-time, runtime, or both.
If a component does not currently use fortified system functions, you need to recompile it to
make use of this feature. See Fortified system functions
in
Security features for developers
.
If the complier has recorded the command line arguments it was invoked with, you can view the
.GCC.command.line ELF section to determine whether a binary was built to use fortified
system functions. See Auditing Builds
in the Programmer's Guide.
If the executable or library has been built to use fortified system functions, the command line arguments recorded in the .GCC.command.line section should include the following information:
- a definition of the _FORTIFY_SOURCE feature test macro with a value of 1 or 2
- a compatible optimization setting (see
Fortified system functions
inSecurity features for developers
)