[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #12103 [Tor bundles/installation]: Fully hardening firefox binary is broken since 3.5.3 on Linux



#12103: Fully hardening firefox binary is broken since 3.5.3 on Linux
-------------------------------------+-------------------------------------
     Reporter:  gk                   |      Owner:  erinn
         Type:  defect               |     Status:  closed
     Priority:  normal               |  Milestone:
    Component:  Tor                  |    Version:
  bundles/installation               |   Keywords:  tbb-security, tbb-
   Resolution:  fixed                |  testcase
Actual Points:                       |  Parent ID:  #10065
       Points:                       |
-------------------------------------+-------------------------------------
Changes (by gk):

 * status:  new => closed
 * resolution:   => fixed


Comment:

 Replying to [comment:16 cypherpunks]:
 > Instead of removing `.note.gnu.build-id` we could to skip it while
 linking stuff. If to pass option for compiler:
 > {{{
 > -Wl,--build-id=none
 > }}}
 > No Build ID then.

 Turns out that this idea needs some Firefox patching we can avoid if we
 switch to gold as our linker which has a number of other advantages like
 waaay faster linking and being a fix for #12743. This is fixed with commit
 d8e92e2f4d362216dfff1790026309e6c0a51b58 on master and commit
 7df10ce04da9ed36a55e91c193fca29e88ac7a5f on maint-3.6.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12103#comment:17>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs