[tor-bugs] #23357 [Core Tor/Tor]: Build with non-Cross-DSO CFI
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Oct 3 18:54:42 UTC 2017
#23357: Build with non-Cross-DSO CFI
----------------------------------------+----------------------------------
Reporter: shawn.webb | Owner: (none)
Type: enhancement | Status: needs_revision
Priority: Medium | Milestone: Tor:
| 0.3.3.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: security, defence-in-depth | Actual Points:
Parent ID: | Points: 1.0
Reviewer: | Sponsor:
----------------------------------------+----------------------------------
Comment (by shawn.webb):
That's unneeded, actually. Since configure honors external CFLAGS and
LDFLAGS, users can simply set the required CFLAGS and LDFLAGS. That's what
we're now doing in the HardenedBSD ports tree for Tor.
To see the CFLAGS and LDFLAGS that get applied, take look here:
https://github.com/HardenedBSD/hardenedbsd-
ports/blob/master/Mk/Uses/cfi.mk
In the HardenedBSD ports tree, we make sure that the proper llvm toolchain
bits are there: https://github.com/HardenedBSD/hardenedbsd-
ports/blob/master/Mk/bsd.hardening.mk#L234-L239
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23357#comment:19>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list