Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-2644

Use security hardening flags and other techniques for Kudu components

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • CLI, client, master, tserver

    Description

      It would be nice to turn on various security-related hardening flags for the compiler and the linker while building various Kudu components. The nice overview of available options is at:
      https://blog.erratasec.com/2018/12/notes-on-build-hardening.html

      Maybe, we could turn on all that for the DEBUG builds, and enable at least some of those that don't hurt performance too much for RELEASE builds after initial evaluation.

      Attachments

        Issue Links

          is related to

          Wish - General wishlist item. KUDU-2002 It would be nice to have Kudu-specific harness for OSS-Fuzz

          • Major - Major loss of function.
          • Open

          Activity

            People

              Unassigned Unassigned
              aserbin Alexey Serbin
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: