Re: [PATCH 06/30] meson: tweak hardening options for Windows

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 06/30] meson: tweak hardening options for Windows

From:	Marc-André Lureau
Subject:	Re: [PATCH 06/30] meson: tweak hardening options for Windows
Date:	Mon, 12 Dec 2022 12:18:53 +0400

Hi

On Fri, Dec 9, 2022 at 3:36 PM Paolo Bonzini <pbonzini@redhat.com> wrote:
>
> -Wl,--dynamicbase has been enabled for DLLs upstream for roughly 2
> years (https://sourceware.org/bugzilla/show_bug.cgi?id=19011), and
> also by some distros including Debian for 6 years even
> (https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836365), so
> just enable it unconditionally.
>
> Also add -Wl,--high-entropy-va.
>
> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
> ---
>  meson.build | 5 +----
>  1 file changed, 1 insertion(+), 4 deletions(-)
>
> diff --git a/meson.build b/meson.build
> index 5c6b5a1c757f..d61c7a82f112 100644
> --- a/meson.build
> +++ b/meson.build
> @@ -193,10 +193,7 @@ qemu_ldflags += 
> cc.get_supported_link_arguments('-Wl,-z,relro', '-Wl,-z,now')
>
>  if targetos == 'windows'
>    qemu_ldflags += cc.get_supported_link_arguments('-Wl,--no-seh', 
> '-Wl,--nxcompat')
> -  # Disable ASLR for debug builds to allow debugging with gdb
> -  if get_option('optimization') == '0'
> -    qemu_ldflags += cc.get_supported_link_arguments('-Wl,--dynamicbase')
> -  endif
> +  qemu_ldflags += cc.get_supported_link_arguments('-Wl,--dynamicbase', 
> '-Wl,--high-entropy-va')

What about the comment for disabling ASLR on debug builds?

I wonder if we really have to add those flags ourself. Imho, we can
leave them to the compiler default or distrib.. I bet most of the deps
don't use those flags explicitly either.

-- 
Marc-André Lureau

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 11/30] meson: cleanup dummy-cpus.c rules, (continued)
- [PATCH 11/30] meson: cleanup dummy-cpus.c rules, Paolo Bonzini, 2022/12/09
  - Re: [PATCH 11/30] meson: cleanup dummy-cpus.c rules, Marc-André Lureau, 2022/12/12
  - Re: [PATCH 11/30] meson: cleanup dummy-cpus.c rules, Daniel P . Berrangé, 2022/12/16
- [PATCH 07/30] meson: support meson 0.64 -Doptimization=plain, Paolo Bonzini, 2022/12/09
  - Re: [PATCH 07/30] meson: support meson 0.64 -Doptimization=plain, Marc-André Lureau, 2022/12/12
  - Re: [PATCH 07/30] meson: support meson 0.64 -Doptimization=plain, Daniel P . Berrangé, 2022/12/16
- [PATCH 09/30] meson: use prefer_static option, Paolo Bonzini, 2022/12/09
  - Re: [PATCH 09/30] meson: use prefer_static option, Marc-André Lureau, 2022/12/12
  - Re: [PATCH 09/30] meson: use prefer_static option, Daniel P . Berrangé, 2022/12/16
- [PATCH 06/30] meson: tweak hardening options for Windows, Paolo Bonzini, 2022/12/09
  - Re: [PATCH 06/30] meson: tweak hardening options for Windows, Marc-André Lureau <=
    - Re: [PATCH 06/30] meson: tweak hardening options for Windows, Paolo Bonzini, 2022/12/12
  - Re: [PATCH 06/30] meson: tweak hardening options for Windows, Daniel P . Berrangé, 2022/12/16
- [PATCH 14/30] configure: test all warnings, Paolo Bonzini, 2022/12/09
  - Re: [PATCH 14/30] configure: test all warnings, Philippe Mathieu-Daudé, 2022/12/09
  - Re: [PATCH 14/30] configure: test all warnings, Daniel P . Berrangé, 2022/12/16
- [PATCH 12/30] modinfo: lookup compile_commands.json by object, Paolo Bonzini, 2022/12/09
  - Re: [PATCH 12/30] modinfo: lookup compile_commands.json by object, Marc-André Lureau, 2022/12/12
- [PATCH 28/30] docs: update build system docs, Paolo Bonzini, 2022/12/09
  - Re: [PATCH 28/30] docs: update build system docs, Marc-André Lureau, 2022/12/12
- [PATCH 21/30] build: move sanitizer tests to meson, Paolo Bonzini, 2022/12/09

Prev by Date: Re: [PATCH v3] hw/rtc/mc146818rtc: Make this rtc device target independent
Next by Date: Re: [PATCH 07/30] meson: support meson 0.64 -Doptimization=plain
Previous by thread: [PATCH 06/30] meson: tweak hardening options for Windows
Next by thread: Re: [PATCH 06/30] meson: tweak hardening options for Windows
Index(es):
- Date
- Thread