]> git.ipfire.org Git - thirdparty/lxc.git/commit
projects / thirdparty / lxc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a40093c) | patch
compiler: -fexceptions hardening 2901/head
authorChristian Brauner <christian.brauner@ubuntu.com>
Mon, 11 Mar 2019 22:36:02 +0000 (23:36 +0100)
committerChristian Brauner <christian.brauner@ubuntu.com>
Mon, 11 Mar 2019 22:36:02 +0000 (23:36 +0100)
commite74d1fd9f3aa92f80e2ff5d7335158e4d52ab69e
tree7febe9b1da3c83296b5cef393187ca1305776a1ftree
parenta40093c6f748f1601d1e0f6ce9a3771486158a2ecommit | diff
compiler: -fexceptions hardening

This hardens multi-threaded C. Without it, the implementation of thread
cancellation handlers (introduced by pthread_cleanup_push) uses a completely
unprotected function pointer on the stack. This function pointer can simplify
the exploitation of stack-based buffer overflows even if the thread in question
is never canceled.

Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
configure.ac diff | blob | blame | history
Mirror of https://github.com/lxc/lxc.git