Closed
Bug 1418052
Opened 7 years ago
Closed 6 years ago
Disable FORTIFY_SOURCE if --disable-hardening is set
Categories
(Firefox Build System :: General, enhancement)
Firefox Build System
General
Tracking
(firefox59 fixed)
RESOLVED
FIXED
mozilla59
| Tracking | Status | |
|---|---|---|
| firefox59 | --- | fixed |
People
(Reporter: tjr, Assigned: tjr)
References
Details
(Whiteboard: [tor 21925])
Attachments
(1 file, 1 obsolete file)
No description provided.
| Comment hidden (mozreview-request) |
|
||
Comment 2•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8930362 [details] Bug 1418052 Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize https://reviewboard.mozilla.org/r/201502/#review207240 At this point, it seems it would be less convoluted to set MOZ_HARDENING_FLAGS to whatever you want, including _FORTIFY_SOURCE, in toolchain.configure, and add it to C*FLAGS in old-configure (or even through CompileFlags).
Attachment #8930362 -
Flags: review?(mh+mozilla)
| Comment hidden (mozreview-request) |
|
Assignee | |
Comment 4•7 years ago
|
||
clearing review flags i want to refactor this actually.
|
|
Assignee | |
Updated•7 years ago
|
Attachment #8930362 -
Flags: review?(mh+mozilla)
Attachment #8930362 -
Flags: review?(choller)
| Comment hidden (mozreview-request) |
|
|
Assignee | |
Comment 6•7 years ago
|
||
Okay, I think it's ready for review now.
| Comment hidden (mozreview-request) |
|
||
Comment 8•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8930362 [details] Bug 1418052 Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize https://reviewboard.mozilla.org/r/201502/#review209310 Looks good to me as long as it doesn't break any builds.
|
|
||
Comment 9•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8930362 [details] Bug 1418052 Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize https://reviewboard.mozilla.org/r/201502/#review209534
Attachment #8930362 -
Flags: review?(choller) → review+
|
|
||
Comment 10•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8930362 [details] Bug 1418052 Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize https://reviewboard.mozilla.org/r/201502/#review210066 ::: build/moz.configure/toolchain.configure:1297 (Diff revision 4) > help='Enables security hardening compiler options') > > > -@depends('--enable-hardening', c_compiler) > -def security_hardening_cflags(value, c_compiler): > - if value and c_compiler.type in ['gcc', 'clang']: > +@depends('--enable-hardening', '--enable-address-sanitizer', > + '--enable-optimize', c_compiler, target) > +def security_hardening_cflags(hardening_flag, asan_flag, optimize_flag, c_compiler, target): you might as well rename the arguments to asan and optimize, and not create local variables that just copy them. ::: build/moz.configure/toolchain.configure:1298 (Diff revision 4) > > > -@depends('--enable-hardening', c_compiler) > -def security_hardening_cflags(value, c_compiler): > - if value and c_compiler.type in ['gcc', 'clang']: > - return '-fstack-protector-strong' > +@depends('--enable-hardening', '--enable-address-sanitizer', > + '--enable-optimize', c_compiler, target) > +def security_hardening_cflags(hardening_flag, asan_flag, optimize_flag, c_compiler, target): > + compiler_is_gccish = c_compiler.type in ['gcc', 'clang'] ('gcc', 'clang') ::: build/moz.configure/toolchain.configure:1307 (Diff revision 4) > + > + flags = [] > + js_flags = [] > > + # FORTIFY_SOURCE ------------------------------------ > + # Enable if no --x-hardening option is passed or --enable-hardening is passed "If hardening is explicitly enabled, or not explicitly disabled" might be clearer. ::: build/moz.configure/toolchain.configure:1320 (Diff revision 4) > + if asan_is_on: > + flags.append("-U_FORTIFY_SOURCE") > + js_flags.append("-U_FORTIFY_SOURCE") if hardening is enabled, then you have -U... -D... -U... in your flags. ::: build/moz.configure/toolchain.configure:1326 (Diff revision 4) > + if hardening_flag: > + if compiler_is_gccish and not asan_is_on: you can merge both ifs.
Attachment #8930362 -
Flags: review?(mh+mozilla)
|
|
Assignee | |
Comment 12•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8930362 [details] Bug 1418052 Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize https://reviewboard.mozilla.org/r/201502/#review210754 Addressed all but one comment: ::: build/moz.configure/toolchain.configure:1320 (Diff revision 4) > + if asan_is_on: > + flags.append("-U_FORTIFY_SOURCE") > + js_flags.append("-U_FORTIFY_SOURCE") I don't think so, maybe you misread? I ran configure with --enable-hardening and -enable-address-sanitizer, and only see one -U as expected.
| Comment hidden (mozreview-request) |
|
|
||
Comment 14•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8930362 [details] Bug 1418052 Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize https://reviewboard.mozilla.org/r/201502/#review211754 ::: build/moz.configure/toolchain.configure:1311 (Diff revision 5) > + if hardening_flag.origin == "default" or hardening_flag: > + # Require optimization for FORTIFY_SOURCE. See Bug 1417452 > + # Also, undefine it before defining it just in case a distro adds it, see Bug 1418398 > + if compiler_is_gccish and optimize and not asan: > + # Don't enable FORTIFY_SOURCE on Android on the top-level, but do enable in js/ > + if not is_android: you might as well use the condition directly... if target.os != 'Android':
Attachment #8930362 -
Flags: review?(mh+mozilla) → review+
| Comment hidden (mozreview-request) |
|
|
Assignee | |
Updated•6 years ago
|
Keywords: checkin-needed
| Comment hidden (mozreview-request) |
|
||
Comment 17•6 years ago
|
||
Pushed by csabou@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/1ee72d1a9430 Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize r=decoder,glandium
Keywords: checkin-needed
|
|
||
Comment 18•6 years ago
|
||
Backout by csabou@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/57d8721abda7 Backed out changeset 1ee72d1a9430 for Linux x64 asan build bustages on /builds/worker/workspace/build/src/config/recurse.mk:32 r=backout on a CLOSED TREE
|
||
Comment 19•6 years ago
|
||
Backed out for Linux x64 asan build bustages on /builds/worker/workspace/build/src/config/recurse.mk:32 https://treeherder.mozilla.org/#/jobs?repo=autoland&revision=1ee72d1a943068ec55007fbc11ae58df10522d0c&filter-resultStatus=testfailed&filter-resultStatus=busted&filter-resultStatus=exception&selectedJob=150747344 https://treeherder.mozilla.org/logviewer.html#?job_id=150747344&repo=autoland&lineNumber=30009 https://hg.mozilla.org/integration/autoland/rev/57d8721abda7e2e8471fa353f5d9dd399d156f54
Flags: needinfo?(tom)
|
|
||
Comment 20•6 years ago
|
||
Also please look at this fail: https://treeherder.mozilla.org/#/jobs?repo=autoland&revision=1ee72d1a943068ec55007fbc11ae58df10522d0c&filter-resultStatus=testfailed&filter-resultStatus=busted&filter-resultStatus=exception&selectedJob=150763506 https://treeherder.mozilla.org/logviewer.html#?job_id=150763506&repo=autoland&lineNumber=2631 Thank you!
|
|
Assignee | |
Comment 21•6 years ago
|
||
My best guess is that the cause of this is because we are going from '-U_FORTIFY_SOURCE -D_FORTIFY_SOURCE=2' for this job to just '-U_FORTIFY_SOURCE' - but I have no idea why that's a problem. I'm going to try re-arranging the code and seeing if that makes the error go away...
| Comment hidden (mozreview-request) |
| Comment hidden (mozreview-request) |
|
|
Assignee | |
Updated•6 years ago
|
Attachment #8942405 -
Flags: review?(jmuizelaar)
|
|
Assignee | |
Comment 25•6 years ago
|
||
Try run: https://treeherder.mozilla.org/#/jobs?repo=try&revision=ba4272dc616480123e62bc3fdf7e36410dc604d8&selectedJob=156066620
|
|
Assignee | |
Comment 26•6 years ago
|
||
Comment on attachment 8942405 [details] Bug 1418052 Used the wrong form for add_old_configure_assignment I spoke to soon (was looking at the wrong job)
Attachment #8942405 -
Flags: review?(jmuizelaar)
| Comment hidden (mozreview-request) |
|
|
Assignee | |
Updated•6 years ago
|
Attachment #8942405 -
Flags: review?(jmuizelaar) → review?(mh+mozilla)
|
|
Assignee | |
Comment 28•6 years ago
|
||
Okay the problem was actually that I my initial attempt at add_old_configure_assignment was incorrect: the function needs to be written to return True (not just the val) for the old-configure assignment to be set. Without MOZ_ASAN we weren't disabling the sandbox, leading to weird compilation errors. glandium - could you review my change? If it looks good I will fold it into the original commit, do a full try run, and then checkin just a single patch.
|
|
||
Comment 29•6 years ago
|
||
| mozreview-review | ||
Comment on attachment 8942405 [details] Bug 1418052 Used the wrong form for add_old_configure_assignment https://reviewboard.mozilla.org/r/212708/#review218678 ::: build/moz.configure/toolchain.configure (Diff revision 2) > # Security Hardening > # ============================================================== > > js_option('--enable-address-sanitizer', help='Enable Address Sanitizer') > > - Removing this line will likely make some linter barf. ::: build/moz.configure/toolchain.configure:1302 (Diff revision 2) > # ============================================================== > > js_option('--enable-address-sanitizer', help='Enable Address Sanitizer') > > - > @depends('--enable-address-sanitizer') you could use @depends_if here and not need that if in the function.
Attachment #8942405 -
Flags: review?(mh+mozilla)
| Comment hidden (mozreview-request) |
| Comment hidden (mozreview-request) |
| Comment hidden (mozreview-request) |
|
|
||
Comment 33•6 years ago
|
||
| mozreview-review | ||
Comment on attachment 8942405 [details] Bug 1418052 Used the wrong form for add_old_configure_assignment https://reviewboard.mozilla.org/r/212708/#review219602
Attachment #8942405 -
Flags: review?(mh+mozilla) → review+
| Comment hidden (mozreview-request) |
|
|
Assignee | |
Updated•6 years ago
|
Attachment #8942405 -
Attachment is obsolete: true
|
|
Assignee | |
Updated•6 years ago
|
Keywords: checkin-needed
|
|
||
Comment 35•6 years ago
|
||
Pushed by ryanvm@gmail.com: https://hg.mozilla.org/integration/autoland/rev/1578425fbe9f Correctly process hardening flags for ASAN, --disable-hardening, and --disable-optimize r=decoder,glandium
Keywords: checkin-needed
|
||
Comment 36•6 years ago
|
||
| bugherder | ||
https://hg.mozilla.org/mozilla-central/rev/1578425fbe9f
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla59
|
||
Updated•6 years ago
|
Whiteboard: [tor 21925]
|
||
Updated•6 years ago
|
Product: Core → Firefox Build System
You need to log in
before you can comment on or make changes to this bug.
Description
•