root
fd0e42ab59
* origin/pristine: (396 commits) irc/anope-devel: hook to build devel/jujutsu: upgrade to version 0.31.0 dns/py-dnspython: Refactor www/py-wsaccel: Set EXPIRATION_DATE 2025-08-03 www/py-autobahn: Remove ACCELERATE OPTION deskutils/birdtray: Return to pool security/snort3: Update version 3.9.0.0=>3.9.1.0 devel/libthreadar: Update version 1.5.2=>1.6.0 devel/cirrus-cli: Update version 0.137.4=>0.138.0 databases/freetds-devel: Update version 1.5.97=>1.5.99 comms/libmodbus: Update version 3.1.10=>3.1.11 net/gnome-online-accounts: Update to 3.54.4 devel/jsonrpc-glib: Update to 3.44.2 devel/rubygem-test-unit: Update to 3.6.9 devel/rubygem-google-apis-iam_v1: Update to 0.71.0 www/py-notebook: Update to 7.4.4 www/py-django52: Update to 5.2.4 german/mythes: Update to 2025.06.29 www/rubygem-selenium-webdriver: Update to 4.34.0 www/rubygem-jwt: Update to 2.10.2 ...
22 lines
810 B
Makefile
22 lines
810 B
Makefile
# SSP Support
|
|
#
|
|
# The -fstack-protector-strong flag enables "stack smashing" protection on a
|
|
# wider set of functions than the default -fstack-protector, but without the
|
|
# full performance cost of -fstack-protector-all. Under the hood it inserts a
|
|
# small "canary" value on the stack just before the saved return address; at
|
|
# function exit it checks that the canary hasn't been overwritten by a buffer
|
|
# overflow. If it has been clobbered, the runtime aborts the program rather
|
|
# than returning into corrupted code.
|
|
|
|
.if !defined(_SSP_MK_INCLUDED)
|
|
_SSP_MK_INCLUDED= yes
|
|
SSP_Include_MAINTAINER= portmgr@ServBSD.org
|
|
|
|
. if !defined(SSP_UNSAFE) && \
|
|
(! ${ARCH:Mmips*})
|
|
# Overridable as a user may want to use -fstack-protector-all
|
|
SSP_CFLAGS?= -fstack-protector-strong
|
|
CFLAGS+= ${SSP_CFLAGS}
|
|
. endif
|
|
.endif
|