[alecco]

> ROP mitigations in clang(1) have been improved, resulting in a significant decrease in the number of polymorphic ROP gadgets in binaries on i386/amd64.

Does anybody know if there's a writeup somewhere? Or what are the commits to look at.

[colinhb]

I haven’t followed this work but Todd Mortimer’s slides[1] from last year stuck with me as a good introduction.

[1] https://www.openbsd.org/papers/eurobsdcon2018-rop.pdf

[brynet]

Todd's given an update at AsiaBSDcon 2019, unfortunately video is not up for that yet.

Slides: https://www.openbsd.org/papers/asiabsdcon2019-rop-slides.pdf

Paper: https://www.openbsd.org/papers/asiabsdcon2019-rop-paper.pdf

[nprescott]

In addition to Todd Mortimer's slides, linked in the sibling comment, there is this video of the same, which I enjoyed: https://www.youtube.com/watch?v=ZvSSHtRv5Mg