Startseite Erkunden Hilfe
Anmelden
OpenWrt
/
openwrt
Mirror von https://github.com/openwrt/openwrt.git
2
0
Fork 0
Dateien Issues 0 Wiki
Quellcode durchsuchen

toolchain: gcc: add fanalyzer config option

Add gcc config option for fanalyzer. As a result of this option, a static
analysis of the program flow is conducted, allowing interprocedural paths
to be identified and warnings to be issued if problems are identified.

Link: https://github.com/openwrt/openwrt/pull/12576
Signed-off-by: Nick Hainke <[email protected]>
Nick Hainke vor 2 Jahren
Ursprung
57e8eb6208
Commit
557c174a3c
2 geänderte Dateien mit 15 neuen und 0 gelöschten Zeilen
Geteilte Ansicht Diff-Statistik anzeigen
  1. 9 0
      config/Config-build.in
  2. 6 0
      include/hardening.mk

+ 9 - 0
config/Config-build.in
Datei anzeigen 

@@ -250,6 +250,15 @@ menu "Global build settings"
 
 
 	comment "Hardening build options"
 
 
+	config PKG_FANALYZER
 
+		bool
 
+		prompt "Enable gcc fanalyzer"
 
+		default n
 
+		help
 
+		  Add -fanalyzer to the CFLAGS. As a result of this option, a static analysis
 
+		  of the program flow is conducted, allowing interprocedural paths to be
 
+		  identified and warnings to be issued if problems are identified.
 
+
 
 	config PKG_CHECK_FORMAT_SECURITY
 
 		bool
 
 		prompt "Enable gcc format-security"

+ 6 - 0
include/hardening.mk
Datei anzeigen 

@@ -9,6 +9,7 @@ PKG_SSP ?= 1
 
 PKG_FORTIFY_SOURCE ?= 1
 
 PKG_RELRO ?= 1
 
 PKG_DT_RELR ?= 1
 
+PKG_FANALYZER ?= 0
 
 
 ifdef CONFIG_PKG_CHECK_FORMAT_SECURITY
 
   ifeq ($(strip $(PKG_CHECK_FORMAT_SECURITY)),1)
 
@@ -77,3 +78,8 @@ ifdef CONFIG_PKG_DT_RELR
 
   endif
 
 endif
 
 
+ifdef CONFIG_PKG_FANALYZER
 
+  ifeq ($(strip $(PKG_FANALYZER)),1)
 
+    TARGET_CFLAGS +=  -fanalyzer
 
+  endif
 
+endif