GCC 11.2.1_git20211125 will be landing in alpine edge shortly.
Conversation
I plan to track GCC 11 for 3.16 and 3.17, by then it is presently assumed that clang will become system default compiler for 3.18.
2
13
Replying to
nothing happened with GCC. there is interest in clang's hardening features being used by default, e.g. control flow integrity.
1
2
ShadowCallStack is worth using on arm64 too. SafeStack exists but isn't really complete and has unresolved issues with runtime integration.
It's straightforward to implement proper ShadowCallStack and cross-DSO CFI support in libc though. Can copy optimized approach in Bionic.
1
Another major reason to use Clang is that the GCC sanitizer support is essentially abandonware. It's incomplete and has a lot of bugs.
UBSan has a lot of sanitizers that are useful in production in the trapping mode but it's a bad idea with GCC due to various serious bugs.