[oe-commits] [openembedded-core] 01/08: security_flags: disable static PIE in glibc

[git at git.openembedded.org]

This is an automated email from the git hooks/post-receive script.

rpurdie pushed a commit to branch sumo
in repository openembedded-core.

commit 502de6f5db232a104eb269782a690f52fd665ef4
Author: Ross Burton <ross.burton at intel.com>
AuthorDate: Thu Sep 27 06:53:55 2018 -0700

    security_flags: disable static PIE in glibc
    
    Static PIE doesn't work entirely right in GCC 7, for example ldconfig on ARM
    with the flags enabled will something segfault during initialisation.
    
    To mitigate this until we have GCC 8 integrated, don't enable static PIE.
    
    Signed-off-by: Ross Burton <ross.burton at intel.com>
    Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
    Signed-off-by: Armin Kuster <akuster808 at gmail.com>
---
 meta/conf/distro/include/security_flags.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta/conf/distro/include/security_flags.inc b/meta/conf/distro/include/security_flags.inc
index d66dd57..aaeca69 100644
--- a/meta/conf/distro/include/security_flags.inc
+++ b/meta/conf/distro/include/security_flags.inc
@@ -6,7 +6,7 @@
 # in the DISTRO="poky-lsb" configuration.
 
 GCCPIE ?= "--enable-default-pie"
-GLIBCPIE ?= "--enable-static-pie"
+# If static PIE is known to work well, GLIBCPIE="--enable-static-pie" can be set
 
 # _FORTIFY_SOURCE requires -O1 or higher, so disable in debug builds as they use
 # -O0 which then results in a compiler warning.

-- 
To stop receiving notification emails like this one, please contact
the administrator of this repository.