summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRoss Burton <ross.burton@intel.com>2018-05-14 13:02:11 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2018-05-15 10:56:48 +0100
commit472c86127ab57759588e5ec53c75ebb52667f094 (patch)
tree93cb5f299241ed09f145fc5953982224ba45bf2a
parentcb68e9a2feade1ee05f8c27438b41bdeac55ae3d (diff)
downloadpoky-472c86127ab57759588e5ec53c75ebb52667f094.tar.gz
security_flags: disable static PIE in glibc
Static PIE doesn't work entirely right in GCC 7, for example ldconfig on ARM with the flags enabled will something segfault during initialisation. To mitigate this until we have GCC 8 integrated, don't enable static PIE. (From OE-Core rev: 5f64946b8740a5d944f48ec430470265703bfe5e) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat
-rw-r--r--meta/conf/distro/include/security_flags.inc2
1 files changed, 1 insertions, 1 deletions
diff --git a/meta/conf/distro/include/security_flags.inc b/meta/conf/distro/include/security_flags.inc
index d66dd57649..aaeca6991b 100644
--- a/meta/conf/distro/include/security_flags.inc
+++ b/meta/conf/distro/include/security_flags.inc
@@ -6,7 +6,7 @@
6# in the DISTRO="poky-lsb" configuration. 6# in the DISTRO="poky-lsb" configuration.
7 7
8GCCPIE ?= "--enable-default-pie" 8GCCPIE ?= "--enable-default-pie"
9GLIBCPIE ?= "--enable-static-pie" 9# If static PIE is known to work well, GLIBCPIE="--enable-static-pie" can be set
10 10
11# _FORTIFY_SOURCE requires -O1 or higher, so disable in debug builds as they use 11# _FORTIFY_SOURCE requires -O1 or higher, so disable in debug builds as they use
12# -O0 which then results in a compiler warning. 12# -O0 which then results in a compiler warning.
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-11-17 03:48:41 +0000