Re: [yocto] Additional hardening options

On Wed, 2022-01-26 at 14:39 +1300, Paul Eggleton wrote: > Hi folks > > I've been looking into a couple of compiler flags for hardening that I think > we > might want to consider enabling by default in security-flags.inc: > > > 1) -fstack-clash-protection > > This option was introduced to gcc

Re: [yocto] Additional hardening options

Hi, This[1] is what I usually add as well to the security flags. With respect to the "default" flags I had some fun with the SDK and  -D_FORTIFY_SOURCE=2 and -fstack-protector-strong. I guess they do have some performance impact as well, but I did not do very thorough research. Also, I did not

Re: [yocto] [meta-lts-mixins][dunfell/go PATCH 1/4] Initial commit: add license, readme and layer config.

On Thu, 27 Jan 2022 at 21:06, Denys Dmytriyenko wrote: > On Thu, Jan 27, 2022 at 06:07:06PM +0100, Alexander Kanavin wrote: > > A question specifically to Denys, how can I actually get this into the > > mixin repo, and have commit rights to the branch? We've tested this quite > > well in private,

[yocto] Yocto Project Status WW05`22

Current Dev Position: YP 3.5 M3 Next Deadline: 21th Feb. 2022 YP 3.5 M3 build Next Team Meetings: * Bug Triage meeting Thursday Feb. 3rd 7:30 am PDT ( https://zoom.us/j/454367603?pwd=ZGxoa2ZXL3FkM3Y0bFd5aVpHVVZ6dz09) *