[Bug 233707] www/firefox: fails to build with -fstack-protector-{strong,all} + -Wl,-z,nocopyreloc
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Wed Dec 5 15:36:19 UTC 2018
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=233707
--- Comment #5 from Shawn Webb <shawn.webb at hardenedbsd.org> ---
I think the reason why FreeBSD is exhibiting issues but not HardenedBSD is
because we enforce -fPIC for all libraries, both in base and ports. We need to
do so to properly build applications as PIEs. Forcing PIC also helps protect
against a compiler-level security vulnerability[1].
[1]: http://www.cse.psu.edu/~trj1/papers/ndss17.pdf
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-toolchain
mailing list