[OE-core] [PATCH v3] security_flags: Add the compiler and linker flags that enhance security
Saul Wold
sgw at linux.intel.com
Tue Jul 2 14:38:10 UTC 2013
On 07/02/2013 03:36 AM, Burton, Ross wrote:
> On 28 June 2013 23:08, Saul Wold <sgw at linux.intel.com> wrote:
>> These flags add addition checks at compile, link and runtime to prevent
>> stack smashing, checking for buffer overflows, and link at program start
>> to prevent call spoofing later.
>>
>> This needs to be explicitly enabled by adding the following line to your
>> local.conf:
>>
>> require conf/distro/include/security_flags.inc
>
> Will we be enabling this in Poky?
>
No we will not enable by default, but we will do builds with them
enabled regularly to test for build failures. They add overhead both in
binary size and performance.
Sau!
> Ross
>
>
More information about the Openembedded-core
mailing list