Bug #36316: No linker time hardening in ceph rpm builds - devops - Ceph

Actions

Copy link

Bug #36316

closed

No linker time hardening in ceph rpm builds

Added by Boris Ranto over 5 years ago. Updated over 5 years ago.

Status:

Resolved

Priority:

High

Assignee:

Boris Ranto

Category:

rpm

Target version:

% Done:

Source:

Tags:

Backport:

mimic luminous

Regression:

Severity:

3 - minor

Reviewed:

Affected Versions:

ceph-qa-suite:

Pull request ID:

Crash signature (v1):

Crash signature (v2):

Description

Currently, we do pass the hardened CFLAGS and CPPFLAGS when building the
code. However, we do not pass the hardened flags to the linker. This
means that the binaries are linked without the options like -Wl,-z,now.
As a result, we do not fully harden the binaries that we build.

Related issues 2 (0 open — 2 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Ceph » devops

Custom queries

Bug #36316

No linker time hardening in ceph rpm builds

Updated by Boris Ranto over 5 years ago

Updated by Kefu Chai over 5 years ago

Updated by Nathan Cutler over 5 years ago

Updated by Nathan Cutler over 5 years ago

Updated by Nathan Cutler over 5 years ago

Updated by Nathan Cutler over 5 years ago