Getting the maximum of your C compiler, for security

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
mkfs squashfs Linux Filesystem mksquashfs

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
WorkOS - The modern identity platform for B2B SaaS
The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
workos.com
featured

  • squashfs-tools-ng

    A new set of tools and libraries for working with SquashFS images

    • IIRC fanalyzer is a fairly recent addition to gcc. Has it become reasonable usable yet?

    I recall getting a bit excited when I first read about it, but the results I got where rather bizarre (e.g. every single function that allocated memory and returned a pointer to it was labeled as leaking memory).

    It did the fun exercise myself once to riffle through the gcc manpage, cobble together warning flags and massage them into autoconf[1][2].

    There is a very handy m4 script in the util-linux source for testing supported warning flags[3].

    [1] https://git.infradead.org/mtd-utils.git/blob/HEAD:/configure...

    [2] https://github.com/AgentD/squashfs-tools-ng/blob/master/conf...

    [3] https://github.com/karelzak/util-linux/blob/master/m4/compil...

  • util-linux

    • IIRC fanalyzer is a fairly recent addition to gcc. Has it become reasonable usable yet?

    I recall getting a bit excited when I first read about it, but the results I got where rather bizarre (e.g. every single function that allocated memory and returned a pointer to it was labeled as leaking memory).

    It did the fun exercise myself once to riffle through the gcc manpage, cobble together warning flags and massage them into autoconf[1][2].

    There is a very handy m4 script in the util-linux source for testing supported warning flags[3].

    [1] https://git.infradead.org/mtd-utils.git/blob/HEAD:/configure...

    [2] https://github.com/AgentD/squashfs-tools-ng/blob/master/conf...

    [3] https://github.com/karelzak/util-linux/blob/master/m4/compil...

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • sanitizers

    AddressSanitizer, ThreadSanitizer, MemorySanitizer

    • Great suggestions! One caveat: -fsanitize=pointer-compare and -fsanitize=pointer-subtract have some sharp edges and (last I knew) are not considered production ready by the sanitizers team. For example: https://github.com/google/sanitizers/issues/1324

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Squashfs turning 20, Squashfs tools 4.5 released

    3 projects | news.ycombinator.com | 24 Jul 2021

  • The Byte Order Fiasco

    7 projects | news.ycombinator.com | 8 May 2021

  • What's the most pratical solution for someone who wants to use Linux as their primary OS but often has to deal with Windows-exclusive software and services?

    1 project | /r/linuxquestions | 6 Dec 2023

  • [PSA] If you are having problems running EAC enabled games on Steam, try running Steam through conty

    1 project | /r/voidlinux | 28 Nov 2023

  • Help! Does anyone know how to install johncena141 games on linux?

    2 projects | /r/LinuxCrackSupport | 1 Jul 2023