[TS-3938] Add hardening (fortify) as an option to configure - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: sometime
Component/s: Build
Labels:
None

Description

It might be useful to add an option, e.g. --with-hardening, such that we can build with various hardening compiler options. For example. I've used

CC="/opt/gcc5/bin/gcc"; export CC
CXX="/opt/gcc5/bin/g++"; export CXX
CFLAGS="-fstack-protector -fno-omit-frame-pointer"; export CFLAGS
CXXFLAGS="-fstack-protector -fno-omit-frame-pointer"; export CXXFLAGS
CPPFLAGS="-D_FORTIFY_SOURCE=2"; export CPPFLAGS
LDFLAGS="-Wl,-z,relro -Wl,-z,now"; export LDFLAGS
"./configure" \
"--enable-experimental-plugins" \
"--prefix=/opt/ats" \
"CC=/opt/gcc5/bin/gcc" \
"CXX=/opt/gcc5/bin/g++" \
"CFLAGS=-fstack-protector -fno-omit-frame-pointer" \
"CXXFLAGS=-fstack-protector -fno-omit-frame-pointer" \
"CPPFLAGS=-D_FORTIFY_SOURCE=2" \
"LDFLAGS=-Wl,-z,relro -Wl,-z,now" \
"$@"

Attachments

Activity

People

Assignee:: Bryan Call

Reporter:: Leif Hedstrom

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 23/Sep/15 15:13

Updated:: 04/Mar/16 23:23

Resolved:: 26/Feb/16 21:00