Florian Weimer's contributions
Article
Why we added restartable sequences support to glibc in RHEL 9
Learn how and why we added restartable sequences support to the GNU C Library in Red Hat Enterprise Linux 9.
Article
Why glibc 2.34 removed libpthread
Consolidation of libraries in the GNU C library means more error-free builds, but there are consequences for developers and system administrators.
Article
Building Red Hat Enterprise Linux 9 for the x86-64-v2 microarchitecture level
Find out why Red Hat recommends building Red Hat Enterprise Linux 9 for x86-64-v2 and what you can expect from this new, optional microarchitecture level.
Article
Guidelines for instruction encoding in the NOP space
Instructions in the NOP space are an attractive way to provide new performance and security features; we show how to use them effectively.
Article
How C array sizes become part of the binary interface of a library
We explain how C array sizes become part of the binary interface of a library and examine ways to avoid ABI compatibility issues.
Article
How Red Hat developers can create handy shortcuts with Firefox keyword bookmarks
Keyword bookmarks turn the Firefox URL bar into a mini-command line, giving you direct access to bug reports, CVEs, RFCs, or anything with an ID and a URL.
Article
Recommended compiler and linker flags for GCC
This article walks through a list of recommended build flags for when you compile your C or C++ programs with GCC. Do you know which build flags you need to specify in order to obtain the same level of security hardening that GNU/Linux distributions such as Fedora and Red Hat Enterprise Linux use?
Article
Adding buffer overflow detection to string functions
This article describes the steps required to add buffer overflow protection to string functions. As a real-world example, we use the strlcpy function, which is implemented in the libbsd library on some GNU/Linux systems. This kind of buffer overflow protection uses a GNU Compiler Collection (GCC) feature for array size tracking (“source fortification”), accessed through the __builtin_object_size GCC built-in function. In general, these checks are added in a size-checking wrapper function around the original (wrapped) function, which is strlcpy in...
Why we added restartable sequences support to glibc in RHEL 9
Learn how and why we added restartable sequences support to the GNU C Library in Red Hat Enterprise Linux 9.
Why glibc 2.34 removed libpthread
Consolidation of libraries in the GNU C library means more error-free builds, but there are consequences for developers and system administrators.
Building Red Hat Enterprise Linux 9 for the x86-64-v2 microarchitecture level
Find out why Red Hat recommends building Red Hat Enterprise Linux 9 for x86-64-v2 and what you can expect from this new, optional microarchitecture level.
Guidelines for instruction encoding in the NOP space
Instructions in the NOP space are an attractive way to provide new performance and security features; we show how to use them effectively.
How C array sizes become part of the binary interface of a library
We explain how C array sizes become part of the binary interface of a library and examine ways to avoid ABI compatibility issues.
How Red Hat developers can create handy shortcuts with Firefox keyword bookmarks
Keyword bookmarks turn the Firefox URL bar into a mini-command line, giving you direct access to bug reports, CVEs, RFCs, or anything with an ID and a URL.
Recommended compiler and linker flags for GCC
This article walks through a list of recommended build flags for when you compile your C or C++ programs with GCC. Do you know which build flags you need to specify in order to obtain the same level of security hardening that GNU/Linux distributions such as Fedora and Red Hat Enterprise Linux use?