Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Aslr #48

Closed
wants to merge 2 commits into from
Closed

Aslr #48

wants to merge 2 commits into from

Conversation

jamill
Copy link

@jamill jamill commented Oct 15, 2018

Port ASLR compile flags upstream

@jamill jamill mentioned this pull request Oct 15, 2018
Closed
35 tasks
@dscho
Copy link
Member

dscho commented Oct 31, 2018

@jamill I bet the CI failure will be resolved by rebasing onto upstream's master.

jamill
jamill commented Nov 6, 2018
View reviewed changes
config.mak.uname Show resolved Hide resolved
jamill
jamill commented Nov 6, 2018
View reviewed changes
config.mak.uname Show resolved Hide resolved
@jamill
Copy link
Author

jamill commented Nov 6, 2018
edited
Loading

/cc @jeffhostetler @dscho - I left some file level comments / questions.

@ismail @dscho
Don't let ld strip relocations
0f9cd4e 
This is the first step for enabling ASLR (Address Space Layout
Randomization) support. We want to enable ASLR for better protection
against exploiting security holes in Git.

The problem fixed by this commit is that `ld.exe` seems to be stripping
relocations which in turn will break ASLR support. We just make sure
it's not stripping the main executable entry.

Signed-off-by: İsmail Dönmez <ismail@i10z.com>
Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de>
@ismail @dscho
Enable DEP and ASLR
885ee24 
Enable DEP (Data Execution Prevention) and ASLR (Address Space Layout
Randomization) support. This applies to both 32bit and 64bit builds
and makes it substantially harder to exploit security holes in Git by
offering a much more unpredictable attack surface.

ASLR interferes with GDB's ability to set breakpoints. A similar issue
holds true when compiling with -O2 (in which case single-stepping is
messed up because GDB cannot map the code back to the original source
code properly). Therefore we simply enable ASLR only when an
optimization flag is present in the CFLAGS, using it as an indicator
that the developer does not want to debug in GDB anyway.

Signed-off-by: İsmail Dönmez <ismail@i10z.com>
Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de>
@dscho dscho mentioned this pull request Feb 24, 2019
Closed
@dscho dscho closed this Feb 24, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dscho dscho dscho left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jamill @dscho @ismail