commit | abbfcc7930834381e05c31068ac2256cb9ea4f49 | [log] [tgz] |
---|---|---|
author | krasin <krasin@google.com> | Fri Dec 04 19:28:22 2015 |
committer | Commit bot <commit-bot@chromium.org> | Fri Dec 04 19:29:20 2015 |
tree | a7a085bbcf8265fe66085a170c453243c1ff00f4 | |
parent | ee3823c3f6f81867ad7527aea4f56388b8ef7000 [diff] |
Enable Control Flow Integrity for the official Linux Chrome. This CL turns on CFI, a security check: https://sites.google.com/a/chromium.org/dev/developers/testing/control-flow-integrity http://clang.llvm.org/docs/ControlFlowIntegrity.html This feature enables LTO (Link-Time Optimization) builds, which slow down the linker by 3x-4x. CFI also comes with a code size overhead of about 7%-9%. The runtime CPU cost is less than 1%, and should not be an issue. BUG=chromium:464797 Intent to Implement thread: https://groups.google.com/a/chromium.org/d/msg/chromium-dev/pbJqt6ccMII/7iJC2oklCAAJ This is a second attempt to land the CL. The first one: https://codereview.chromium.org/1393283005/ Review URL: https://codereview.chromium.org/1501593003 Cr-Commit-Position: refs/heads/master@{#363267}