Ubuntu
gcc-7 package

Enable x86 retpoline options by default

Bug #1750893 reported by Steve Beattie on 2018-02-21

This bug affects 3 people

Affects		Status	Importance	Assigned to	Milestone
	gcc-7 (Ubuntu)	Won't Fix	Undecided	Unassigned

For Ubuntu 18.04 LTS, the x86 retpoline options (-mindirect-branch=thunk and -mfunction-return=thunk) should be enabled by default.

For problematic packages, -mindirect-branch=keep and -mfunction-return=keep can be used to disable retpolines.

Tags:

Revision history for this message

Dimitri John Ledkov (xnox) wrote on 2018-02-21:

A dpkg-buildflags integration could be nice. Such that e.g. DEB_BUILD_MAINT_OPTIONS=hardening=-retpoline works.

Francis Ginther (fginther) on 2018-02-26

tags:

added: id-5a93dd6aff8f17bbd60d3bb6

Revision history for this message

Launchpad Janitor (janitor) wrote on 2018-03-02:

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in gcc-7 (Ubuntu):
status:	New → Confirmed

Revision history for this message

Matthias Klose (doko) wrote on 2018-03-27:

afaics the decision was not to rebuild user space with these patches enabled.

Changed in gcc-7 (Ubuntu):
status:	Confirmed → Won't Fix

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Bug watches keep track of this bug in other bug trackers.