tech-pkg archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Improving security for pkgsrc

On Tue, Jul 21, 2015 at 02:00:05PM +0200, Joerg Sonnenberger wrote:
 > > ... and it takes lots of efforts to get ssp to work properly, especially
 > > with a compiler that has bugs.
 > This is not about code generation bugs. It is about the misdesign of GCC
 > to add (fatal with -Werror) warnings because it is too stupid to
 > instrument functions e.g. using alloca. Which doesn't even make sense,
 > as the canary cookie can be created just as well.

He just said "bugs", not code generation bugs. What you've just
described is also a bug :-)

David A. Holland

Home | Main Index | Thread Index | Old Index