[flang-commits] [flang] [flang][docs] Add an FAQ about an executable stack (PR #171241)

Tarun Prabhu via flang-commits flang-commits at lists.llvm.org
Thu Dec 11 03:26:55 PST 2025 

================
@@ -0,0 +1,54 @@
+<!--===- docs/FAQ.md
+
+   Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
+   See https://llvm.org/LICENSE.txt for license information.
+   SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
+
+-->
+
+<!-- TODO: remove this after adding this page to ToC -->
+```{eval-rst}
+:orphan:
+```
+
+# Frequently Asked Questions (FAQ)
+
+```{contents}
+---
+local:
+---
+```
+
+## Driver
+
+### Why do I get a warning or an error about an executable stack?
+
+This occurs because Flang's implementation of pointers to internal procedures requires an executable stack.
+
+When an internal procedure is referenced from outside its host scope (for example, via a procedure pointer), the implementation must ensure that it can still access variables from that host scope.
+To achieve this, the current implementation of Flang generates a small piece of code, called a "trampoline", on the stack.
+When the procedure is called, execution first goes through this trampoline.
+This means that the stack must be executable.
+For a more detailed explanation of trampolines, please refer to the [design document](InternalProcedureTrampolines.md).
+
+However, an executable stack can introduce security vulnerabilities (for example, by increasing the impact of [stack buffer overflow attacks](https://en.wikipedia.org/wiki/Buffer_overflow#Stack-based_exploitation)).
----------------
tarunprabhu wrote:

Since we have linked to the stack-based exploitation section of the buffer overflow wikipedia article, perhaps we state explicitly that the executable stack makes the code vulnerable to stack-based exploits. This might also address David's concern.

```suggestion
However, an executable stack can introduce security vulnerabilities such as [stack-based expoitation attacks](https://en.wikipedia.org/wiki/Buffer_overflow#Stack-based_exploitation).
```

https://github.com/llvm/llvm-project/pull/171241

More information about the flang-commits mailing list