Code Review / AGL / meta-agl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 2ceaa31)
Re-enable security flags proposed in Poky 49/8949/3
authorStephane Desneux <stephane.desneux@iot.bzh>
Tue, 28 Mar 2017 07:14:45 +0000 (07:14 +0000)
committerJan-Simon Moeller <jsmoeller@linuxfoundation.org>
Tue, 28 Mar 2017 21:28:24 +0000 (21:28 +0000)
This security feature was initially enabled by commit a1e6f20
but it has been disabled later by commit 85844f4.

Bug-AGL: SPEC-501

Change-Id: Ic30065a9b3d599adb97bcca78c5863e47fc11920
Signed-off-by: Stephane Desneux <stephane.desneux@iot.bzh>
meta-agl-distro/conf/distro/poky-agl.conf patch | blob | history

diff --git a/meta-agl-distro/conf/distro/poky-agl.conf b/meta-agl-distro/conf/distro/poky-agl.conf
index 94e4f80..e919e0a 100644 (file)
--- a/meta-agl-distro/conf/distro/poky-agl.conf
+++ b/meta-agl-distro/conf/distro/poky-agl.conf
@@ -71,7 +71,7 @@ PREFERRED_PROVIDER_jpeg = "libjpeg-turbo"
 #BB_DANGLINGAPPENDS_WARNONLY = "1"
 
 # enforce security-related compiler flags by default
 #BB_DANGLINGAPPENDS_WARNONLY = "1"
 
 # enforce security-related compiler flags by default
-#require conf/distro/include/security_flags.inc
+require conf/distro/include/security_flags.inc
 # required overrides, upstreamed but not merged yet:
 # http://lists.openembedded.org/pipermail/openembedded-devel/2016-June/107727.html
 #SECURITY_CFLAGS_pn-llvm3.3 = "${SECURITY_NO_PIE_CFLAGS}"
 # required overrides, upstreamed but not merged yet:
 # http://lists.openembedded.org/pipermail/openembedded-devel/2016-June/107727.html
 #SECURITY_CFLAGS_pn-llvm3.3 = "${SECURITY_NO_PIE_CFLAGS}"
meta-agl layer (core AGL)