[lxc-devel] [lxc/lxc] c9248f: compiler: -fasynchronous-unwind-tables hardening

Stéphane Graber noreply at github.com
Mon Mar 11 23:39:05 UTC 2019


  Branch: refs/heads/master
  Home:   https://github.com/lxc/lxc
  Commit: c9248f7162875e26abca94185d34c235ac0a48de
      https://github.com/lxc/lxc/commit/c9248f7162875e26abca94185d34c235ac0a48de
  Author: Christian Brauner <christian.brauner at ubuntu.com>
  Date:   2019-03-11 (Mon, 11 Mar 2019)

  Changed paths:
    M configure.ac

  Log Message:
  -----------
  compiler: -fasynchronous-unwind-tables hardening

Increased reliability of backtraces.

Signed-off-by: Christian Brauner <christian.brauner at ubuntu.com>


  Commit: a40093c6f748f1601d1e0f6ce9a3771486158a2e
      https://github.com/lxc/lxc/commit/a40093c6f748f1601d1e0f6ce9a3771486158a2e
  Author: Christian Brauner <christian.brauner at ubuntu.com>
  Date:   2019-03-11 (Mon, 11 Mar 2019)

  Changed paths:
    M configure.ac

  Log Message:
  -----------
  compiler: -pipe

Avoid temporary files, speeding up builds.

Signed-off-by: Christian Brauner <christian.brauner at ubuntu.com>


  Commit: e74d1fd9f3aa92f80e2ff5d7335158e4d52ab69e
      https://github.com/lxc/lxc/commit/e74d1fd9f3aa92f80e2ff5d7335158e4d52ab69e
  Author: Christian Brauner <christian.brauner at ubuntu.com>
  Date:   2019-03-11 (Mon, 11 Mar 2019)

  Changed paths:
    M configure.ac

  Log Message:
  -----------
  compiler: -fexceptions hardening

This hardens multi-threaded C. Without it, the implementation of thread
cancellation handlers (introduced by pthread_cleanup_push) uses a completely
unprotected function pointer on the stack. This function pointer can simplify
the exploitation of stack-based buffer overflows even if the thread in question
is never canceled.

Signed-off-by: Christian Brauner <christian.brauner at ubuntu.com>


  Commit: 2009688da461547d674a3b076488579a75311820
      https://github.com/lxc/lxc/commit/2009688da461547d674a3b076488579a75311820
  Author: Stéphane Graber <stgraber at stgraber.org>
  Date:   2019-03-11 (Mon, 11 Mar 2019)

  Changed paths:
    M configure.ac

  Log Message:
  -----------
  Merge pull request #2901 from brauner/2019-03-11/compiler_flags

compiler: hardening


Compare: https://github.com/lxc/lxc/compare/bbebc423bf26...2009688da461


More information about the lxc-devel mailing list