GCC 11.2.1_git20211125 will be landing in alpine edge shortly.
Conversation
I plan to track GCC 11 for 3.16 and 3.17, by then it is presently assumed that clang will become system default compiler for 3.18.
2
13
Replying to
nothing happened with GCC. there is interest in clang's hardening features being used by default, e.g. control flow integrity.
1
2
ShadowCallStack is worth using on arm64 too. SafeStack exists but isn't really complete and has unresolved issues with runtime integration.
It's straightforward to implement proper ShadowCallStack and cross-DSO CFI support in libc though. Can copy optimized approach in Bionic.
Another major reason to use Clang is that the GCC sanitizer support is essentially abandonware. It's incomplete and has a lot of bugs.
UBSan has a lot of sanitizers that are useful in production in the trapping mode but it's a bad idea with GCC due to various serious bugs.