Re: [CFT] SSP Package Repository available

On 2014-08-20 12:34, Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only currently. Support may be added for earlier i386 releases once all ports properly respect LD

Re: [CFT] SSP Package Repository available

On Thu, 21 Aug 2014 17:55:41 +0200, Bryan Drewery wrote: On 8/21/2014 6:56 AM, Ronald Klop wrote: On Wed, 20 Aug 2014 18:34:22 +0200, Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and o

Re: [CFT] SSP Package Repository available

On 20/08/2014 18:34, Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only currently. Support may be added for earlier i386 releases once all ports properly respect LD

Re: SAT resolver problem - [CFT] SSP Package Repository available

On 8/26/2014 2:02 PM, Michael Jung wrote: > On 2014-08-22 16:17, Bryan Drewery wrote: >> On 8/22/2014 1:16 PM, mikej wrote: >>> On , Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: > Ports now support enabling Stack Protector [1] support on FreeBSD 10 > i386 and amd64,

Re: SAT resolver problem - [CFT] SSP Package Repository available

On 2014-08-22 16:17, Bryan Drewery wrote: On 8/22/2014 1:16 PM, mikej wrote: On , Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only currently. Support may be add

Re: SAT resolver problem - [CFT] SSP Package Repository available

On 8/22/2014 1:16 PM, mikej wrote: > On , Bryan Drewery wrote: >> On 9/21/2013 5:49 AM, Bryan Drewery wrote: >>> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >>> i386 and amd64, and older releases on amd64 only currently. >>> >>> Support may be added for earlier i386 release

SAT resolver problem - [CFT] SSP Package Repository available

On , Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only currently. Support may be added for earlier i386 releases once all ports properly respect LDFLAGS. To enabl

Re: [CFT] SSP Package Repository available

2014-08-22 18:07, Dimitry Andric wrote: On 21 Aug 2014, at 18:07, Bryan Drewery wrote: On 8/21/2014 10:53 AM, Bryan Drewery wrote: On 8/21/2014 5:34 AM, Mark Martinec wrote: Does clang (in 10-STABLE or CURRENT) support also the option -fstack-protector-strong ? Not sure if clang 3.4 has it,

Re: [CFT] SSP Package Repository available

On 21 Aug 2014, at 18:07, Bryan Drewery wrote: > On 8/21/2014 10:53 AM, Bryan Drewery wrote: >> On 8/21/2014 5:34 AM, Mark Martinec wrote: >>> Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only curren

Re: [CFT] SSP Package Repository available

On 8/21/2014 10:53 AM, Bryan Drewery wrote: > On 8/21/2014 5:34 AM, Mark Martinec wrote: >> Bryan Drewery wrote: >>> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >>> i386 and amd64, and older releases on amd64 only currently. >>> >>> Support may be added for earlier i386 rel

Re: [CFT] SSP Package Repository available

On 8/21/2014 9:31 AM, Jerry wrote: > On Thu, 21 Aug 2014 16:05:46 +0200, Mathias Picker stated: > >> On Mi, 2014-08-20 at 11:34 -0500, Bryan Drewery wrote: >>> On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64,

Re: [CFT] SSP Package Repository available

On 8/21/2014 8:32 AM, Nikolai Lifanov wrote: > On 08/20/14 12:34, Bryan Drewery wrote: >> On 9/21/2013 5:49 AM, Bryan Drewery wrote: >>> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >>> i386 and amd64, and older releases on amd64 only currently. >>> >>> Support may be added

Re: [CFT] SSP Package Repository available

On 8/21/2014 6:56 AM, Ronald Klop wrote: > On Wed, 20 Aug 2014 18:34:22 +0200, Bryan Drewery > wrote: > >> On 9/21/2013 5:49 AM, Bryan Drewery wrote: >>> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >>> i386 and amd64, and older releases on amd64 only currently. >>> >>> Su

Re: [CFT] SSP Package Repository available

On 8/21/2014 5:34 AM, Mark Martinec wrote: > Bryan Drewery wrote: >> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >> i386 and amd64, and older releases on amd64 only currently. >> >> Support may be added for earlier i386 releases once all ports properly >> respect LDFLAGS. >

Re: [CFT] SSP Package Repository available

On Thu, 21 Aug 2014 16:05:46 +0200, Mathias Picker stated: >On Mi, 2014-08-20 at 11:34 -0500, Bryan Drewery wrote: >> On 9/21/2013 5:49 AM, Bryan Drewery wrote: >> > Ports now support enabling Stack Protector [1] support on FreeBSD 10 >> > i386 and amd64, and older releases on amd64 only currently

Re: [CFT] SSP Package Repository available

On Mi, 2014-08-20 at 11:34 -0500, Bryan Drewery wrote: > On 9/21/2013 5:49 AM, Bryan Drewery wrote: > > Ports now support enabling Stack Protector [1] support on FreeBSD 10 > > i386 and amd64, and older releases on amd64 only currently. > > > > Support may be added for earlier i386 releases once a

Re: [CFT] SSP Package Repository available

On 08/20/14 12:34, Bryan Drewery wrote: > On 9/21/2013 5:49 AM, Bryan Drewery wrote: >> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >> i386 and amd64, and older releases on amd64 only currently. >> >> Support may be added for earlier i386 releases once all ports properly >>

Re: [CFT] SSP Package Repository available

On Wed, 20 Aug 2014 18:34:22 +0200, Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only currently. Support may be added for earlier i386 releases once all ports

Re: [CFT] SSP Package Repository available

Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only currently. Support may be added for earlier i386 releases once all ports properly respect LDFLAGS. To enable, just add WITH_SSP=yes to your make.conf and re

Re: [CFT] SSP Package Repository available

Interesting. I wonder if this repo will get along with the new_xorg repo. About to find out... On Wed, Aug 20, 2014 at 11:34 AM, Bryan Drewery wrote: > On 9/21/2013 5:49 AM, Bryan Drewery wrote: > > Ports now support enabling Stack Protector [1] support on FreeBSD 10 > > i386 and amd64, and ol

Re: [CFT] SSP Package Repository available

Am 20.08.2014 um 21:40 schrieb Bryan Drewery: > I like that idea for a warning. We would have to ensure only ELF files > are checked and probably exp-run it to avoid other false-positives. And trivial programs (hello-world-style) will also cause false positives there because there's nothing to in

Re: [CFT] SSP Package Repository available

On 8/20/2014 2:26 PM, Matthias Andree wrote: > Am 20.08.2014 um 18:34 schrieb Bryan Drewery: > >> We have not had any feedback on this yet and want to get it enabled by >> default for ports and packages. > > Oops. Sorry about being silent about that; > I did enable WITH_SSP_PORTS=yes right after

Re: [CFT] SSP Package Repository available

Am 20.08.2014 um 18:34 schrieb Bryan Drewery: > We have not had any feedback on this yet and want to get it enabled by > default for ports and packages. Oops. Sorry about being silent about that; I did enable WITH_SSP_PORTS=yes right after the original announcement on my main 9.3-amd64 developmen

Re: [CFT] SSP Package Repository available

Am 20.08.2014 um 20:10 schrieb Adam McDougall: > I concur with Mark, with my 1400+ packages for workstations and servers, > I have had zero issues. This seems like a pretty safe change. I just > confirmed -fstack-protector is in my build logs although less frequently > than I assumed for ports s

Re: [CFT] SSP Package Repository available

On 08/20/2014 13:20, Mark Martinec wrote: > 2014-08-20 18:34 Bryan Drewery wrote: >> On 9/21/2013 5:49 AM, Bryan Drewery wrote: >>> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >>> i386 and amd64, and older releases on amd64 only currently. >>> >>> Support may be added for e

Re: [CFT] SSP Package Repository available

On 8/20/2014 12:20 PM, Mark Martinec wrote: > 2014-08-20 18:34 Bryan Drewery wrote: >> On 9/21/2013 5:49 AM, Bryan Drewery wrote: >>> Ports now support enabling Stack Protector [1] support on FreeBSD 10 >>> i386 and amd64, and older releases on amd64 only currently. >>> >>> Support may be added for

Re: [CFT] SSP Package Repository available

For older versions of Freebsd add to /etc/make.conf SSP_CFLAGS=-fstack-protector-all SSP_CXXFLAGS=-fstack-protector-all Should works. 2014-08-20 18:34 GMT+02:00 Bryan Drewery : > On 9/21/2013 5:49 AM, Bryan Drewery wrote: > > Ports now support enabling Stack Protector [1] support on FreeBSD 1

Re: [CFT] SSP Package Repository available

2014-08-20 18:34 Bryan Drewery wrote: On 9/21/2013 5:49 AM, Bryan Drewery wrote: Ports now support enabling Stack Protector [1] support on FreeBSD 10 i386 and amd64, and older releases on amd64 only currently. Support may be added for earlier i386 releases once all ports properly respect LDFLAG

[CFT] SSP Package Repository available

On 9/21/2013 5:49 AM, Bryan Drewery wrote: > Ports now support enabling Stack Protector [1] support on FreeBSD 10 > i386 and amd64, and older releases on amd64 only currently. > > Support may be added for earlier i386 releases once all ports properly > respect LDFLAGS. > > To enable, just add WIT