New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
-fstack-protector enabled without any way to disable, even on platforms not supporting it #10857
Comments
From perlbug@plan9.deCreated by perlbug@plan9.debeginning with 5.10.something, perl enforces the use of -fstack-protector, unfortunately, gcc supports this flag on most platforms, even if the besides, it would be nice not to enforce the use of certain compiler so... please please please make -fstack-protector configurable somehow, thanks :) Perl Info
|
From @doughera88On Fri, 26 Nov 2010, perlbug @ plan9 . de wrote:
I agree with your general premise that it should be possible to get I should point out, however, that while it isn't easy, it is possible to
I wasn't aware that gcc might be misleading us this way. If you could
Unfortunately, other users do rely on us supplementing the user-specified Meanwhile, yes, an improved test program would likely be a very good idea. -- |
The RT System itself - Status changed from 'new' to 'open' |
From @TuxOn Sun, 28 Nov 2010 14:27:51 -0500 (EST), Andy Dougherty
-Ucflags/-ffnork,-DFROUBLE /could/ be a way to go specify what CFLAGS/LDFLAGS/... should be
Absolutely -- |
From @ikegamiOn Sun, Nov 28, 2010 at 2:27 PM, Andy Dougherty <doughera@lafayette.edu>wrote:
If Perl only supplements, then -fno-stack-protector should work, right? Does |
From @doughera88On Mon, 29 Nov 2010, Eric Brine wrote:
Yes, good call. Configure even actually already contains code to Still, I agree that a test file that made this happen automatically would -- |
From @rurbanAndy Dougherty schrieb:
And just to add to the mix: So if I fold the compiler and linker flags together with the typical $ perl -V:ccflags -V:ldflags -- |
From schmorp@schmorp.deOn Sun, Nov 28, 2010 at 02:27:51PM -0500, Andy Dougherty <doughera@lafayette.edu> wrote:
just saw your reply by accident (I wasn't included in your reply's
Yeah, or by perl -pi -e 's/...' Configure, which is wat I am doing now.
Presumably, you would just need to run the program and if it crashes,
I primarily asked for a way to disable -fstack-protector. Somehow. So, which other users rely on your enforcing -fstack-protector? Is there -- |
From @tonycozSorry for the long delayed response. On Fri Dec 10 19:07:02 2010, schmorp@schmorp.de wrote:
The test does run the compiled program, the check uses the checkccflag echo "int main(void) { return 0; }" > gcctest.c; So the only solution is a better test program, which you'll need to
As mentioned by Eric and confirmed by Andy, adding -fno-stack-protector ./Configure -des -Dusedevel -Accflags=-fno-stack-protector and no -fstack-protector flag was added by Configure.
-fstack-protector is a security hardening tool. Is it necessary? It probably depends on how you're using perl. Are you able to provide a test program for Configure that can be used to Tony |
From schmorp@schmorp.deOn Tue, Sep 03, 2013 at 09:34:20PM -0700, Tony Cook via RT <perlbug-followup@perl.org> wrote:
Since the compiled tets program did crash, I presume it's new that the tets
That also didn't work (configure always added -fstack-protector after it),
Indeed, which is why Configfure shouldn't force it's use it. If it no
The test program did crash when I ran it manually, so that wasn't the -- |
From @tonycozOn Tue Sep 03 23:12:12 2013, schmorp@schmorp.de wrote:
Configure has been executing the test program it created since before But if you're happy with the current behaviour, I'm happy to close the Tony |
From @tonycozOn Wed Sep 04 22:31:24 2013, tonyc wrote:
And so closing it. Tony |
@tonycoz - Status changed from 'open' to 'resolved' |
Migrated from rt.perl.org#79838 (status was 'resolved')
Searchable as RT79838$
The text was updated successfully, but these errors were encountered: