mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-09 05:29:32 +00:00
Code Issues Projects Releases Wiki Activity

ref-manual: Added the GCCPIE Variable to Glossary

Browse Source 
(From yocto-docs rev: b30f3d3bd6f6d333b00fc9c3797126a898fb0685)

Signed-off-by: Kristi Rifenbark <kristi.rifenbark@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Kristi Rifenbark
2017-11-07 15:55:41 -08:00
committed by Richard Purdie
parent 5d9d10704f
commit a52dc0a11e
2 changed files with 29 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
documentation/ref-manual/migration.xml
+4 -3
View File
@@ -5182,9 +5182,10 @@ id=f4d4f99cfbc2396e49c1613a7d237b9e57f06f81'>commit message</ulink>.
</para></listitem> </para></listitem>
<listitem><para> <listitem><para>
By default, the <filename>security_flags.inc</filename> file By default, the <filename>security_flags.inc</filename> file
sets a <filename>GCCPIE</filename> variable with an option sets a
to enable Position Independent Executables (PIE) within <link linkend='var-GCCPIE'><filename>GCCPIE</filename></link>
<filename>gcc</filename>. variable with an option to enable Position Independent
Executables (PIE) within <filename>gcc</filename>.
Enabling PIE in the GNU C Compiler (GCC), makes Return Enabling PIE in the GNU C Compiler (GCC), makes Return
Oriented Programming (ROP) attacks much more difficult to Oriented Programming (ROP) attacks much more difficult to
execute. execute.
documentation/ref-manual/ref-variables.xml
+25 -1
View File
@@ -22,7 +22,7 @@
<link linkend='var-D'>D</link> <link linkend='var-D'>D</link>
<link linkend='var-EFI_PROVIDER'>E</link> <link linkend='var-EFI_PROVIDER'>E</link>
<link linkend='var-FEATURE_PACKAGES'>F</link> <link linkend='var-FEATURE_PACKAGES'>F</link>
<link linkend='var-GDB'>G</link> <link linkend='var-GCCPIE'>G</link>
<link linkend='var-HOMEPAGE'>H</link> <link linkend='var-HOMEPAGE'>H</link>
<link linkend='var-ICECC_DISABLED'>I</link> <link linkend='var-ICECC_DISABLED'>I</link>
<!-- <link linkend='var-glossary-j'>J</link> --> <!-- <link linkend='var-glossary-j'>J</link> -->
@@ -5030,6 +5030,30 @@
<glossdiv id='var-glossary-g'><title>G</title> <glossdiv id='var-glossary-g'><title>G</title>
<glossentry id='var-GCCPIE'><glossterm>GCCPIE</glossterm>
<info>
GCCPIE[doc] = "Enables Position Independent Executables (PIE) within the GNU C Compiler (GCC)."
</info>
<glossdef>
<para role="glossdeffirst">
<!-- <para role="glossdeffirst"><imagedata fileref="figures/define-generic.png" /> -->
Enables Position Independent Executables (PIE) within the
GNU C Compiler (GCC).
Enabling PIE in the GCC makes Return Oriented Programming
(ROP) attacks much more difficult to
execute.
</para>
<para>
By default the <filename>security_flags.inc</filename>
file enables PIE by setting the variable as follows:
<literallayout class='monospaced'>
GCCPIE ?= "--enable-default-pie"
</literallayout>
</para>
</glossdef>
</glossentry>
<glossentry id='var-GDB'><glossterm>GDB</glossterm> <glossentry id='var-GDB'><glossterm>GDB</glossterm>
<info> <info>
GDB[doc] = "The minimal command and arguments to run the GNU Debugger." GDB[doc] = "The minimal command and arguments to run the GNU Debugger."