-
Notifications
You must be signed in to change notification settings - Fork 31
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
is cfi enabled in this build? #152
Comments
the gn flags in this project (contained in the file |
Thanks :). What do you think about cfi? Is something that could be interesting to implement? |
As long as you build exactly like Google does. IIRC cfi requires clang, thinlto and libc++ instead of libstdc++.
Some Gentoo folks use cfi with ungoogled-chromium — that's for sure. So it is doable.
cfi could detect problematic code in Chromium, but apart from that I have my doubts on its effectiveness in other domains. Besides, do not expect catching such a bug yourself, most of the issues are likely to be caught by Google beforehand. |
@PF4Public thanks for your comment :) |
@clickot yes, for me it is sufficient 👍 |
I'm not an expert and I'm struggling find this information exploring the codebase.
There is the issue #148 that seems to be a problem with cfi, but in flags.gn I dont find is_cfi=true and use_cfi_icall=true, use_cfi_cast=true, use_thin_lto=true.
Are other flags grabbed from other location than flags.gn during compilation? Or is just that cfi is not enabled in this build?
The text was updated successfully, but these errors were encountered: