Open Bug 1374344 Opened 2 years ago Updated 10 months ago

Investigate Clang SafeStack

Categories

(Firefox Build System :: General, enhancement, P3)

enhancement

Tracking

(Not tracked)

People

(Reporter: tjr, Unassigned)

References

(Blocks 1 open bug)

Details

(Keywords: sec-want)

Maybe this is something we could add to --enable-hardening 

https://clang.llvm.org/docs/SafeStack.html
Product: Core → Firefox Build System
See Also: → 1465859
"Certain code that relies on low-level stack manipulations requires adaption to work with SafeStack. One example is mark-and-sweep garbage collection implementations for C/C++ (e.g., Oilpan in chromium/blink), which must be changed to look for the live pointers on both safe and unsafe stacks."

"At the moment, compiling dynamic libraries with SafeStack is not supported."

The latter seems to make it mostly useless for our purposes?
Priority: -- → P3
You need to log in before you can comment on or make changes to this bug.