You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@kudu.apache.org by "Grant Henke (Jira)" <ji...@apache.org> on 2020/06/03 13:08:00 UTC

[jira] [Updated] (KUDU-2644) Use security hardening flags and other techniques for Kudu components

     [ https://issues.apache.org/jira/browse/KUDU-2644?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Grant Henke updated KUDU-2644:
------------------------------
    Labels: build security  (was: security)

> Use security hardening flags and other techniques for Kudu components
> ---------------------------------------------------------------------
>
>                 Key: KUDU-2644
>                 URL: https://issues.apache.org/jira/browse/KUDU-2644
>             Project: Kudu
>          Issue Type: Improvement
>          Components: CLI, client, master, tserver
>            Reporter: Alexey Serbin
>            Priority: Major
>              Labels: build, security
>
> It would be nice to turn on various security-related hardening flags for the compiler and the linker while building various Kudu components.  The nice overview of available options is at:
>   https://blog.erratasec.com/2018/12/notes-on-build-hardening.html
> Maybe, we could turn on all that for the DEBUG builds, and enable at least some of those that don't hurt performance too much for RELEASE builds after initial evaluation.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)