Diffusion FreeBSD src repository 9bfd3b4076a7

Add a build knob for _FORTIFY_SOURCE
9bfd3b4076a7
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

Add a build knob for _FORTIFY_SOURCE

In the future, we will Default to _FORTIFY_SOURCE=2 if SSP is enabled,
otherwise default to _FORTIFY_SOURCE=0. For now we default it to 0
unconditionally to ease bisect across older versions without the new
symbols, and we'll put out a call for testing.

include/*.h include their ssp/*.h equivalents as needed based on the
knob. Programs and users are allowed to override FORTIFY_SOURCE in their
Makefiles or src.conf/make.conf to force it off.

Reviewed by: des, markj
Relnotes: yes
Sponsored by: Stormshield
Sponsored by: Klara, Inc.
Differential Revision: https://reviews.freebsd.org/D32308

Details

Provenance

Authored on May 13 2024, 5:23 AM

Reviewer

Differential Revision

D32308: Add a build knob for _FORTIFY_SOURCE

Parents

rGe55512504d01: Prepare the system for _FORTIFY_SOURCE

Branches

Unknown

Tags

Unknown

Event Timeline

kevans committed rG9bfd3b4076a7: Add a build knob for _FORTIFY_SOURCE (authored by kevans).May 13 2024, 5:23 AM

kevans added an edge: D32308: Add a build knob for _FORTIFY_SOURCE.

emaste mentioned this in rGb667c40f9ff6: src.conf.5: regen after addition of _FORTIFY_SOURCE build knob.May 13 2024, 3:29 PM

Changes (10)

Path

Size

include/

lib/

libthr/

libexec/

rtld-elf/

share/

man/

man7/

mk/

tools/

build/

options/

rG9bfd3b4076a7

include/stdio.h

Loading...

include/string.h

Loading...

include/strings.h

Loading...

include/unistd.h

Loading...

lib/libthr/Makefile

Loading...

libexec/rtld-elf/Makefile

Loading...

share/man/man7/security.7

Loading...

share/mk/bsd.sys.mk

Loading...

tools/build/options/WITHOUT_SSP

Loading...

tools/build/options/WITH_SSP

Loading...