From 8735fdbd4ceeb78442804b393d49f5e7f56c1967 Mon Sep 17 00:00:00 2001
From: ru <ru@FreeBSD.org>
Date: Wed, 25 Jun 2008 21:33:28 +0000
Subject: Enable GCC stack protection (aka Propolice) for userland: - It is
 opt-out for now so as to give it maximum testing, but it may be   turned
 opt-in for stable branches depending on the consensus.  You   can turn it off
 with WITHOUT_SSP. - WITHOUT_SSP was previously used to disable the build of
 GNU libssp.   It is harmless to steal the knob as SSP symbols have been
 provided   by libc for a long time, GNU libssp should not have been much
 used. - SSP is disabled in a few corners such as system bootstrap programs  
 (sys/boot), process bootstrap code (rtld, csu) and SSP symbols themselves. -
 It should be safe to use -fstack-protector-all to build world, however   libc
 will be automatically downgraded to -fstack-protector because it   breaks
 rtld otherwise. - This option is unavailable on ia64.

Enable GCC stack protection (aka Propolice) for kernel:
- It is opt-out for now so as to give it maximum testing.
- Do not compile your kernel with -fstack-protector-all, it won't work.

Submitted by:	Jeremie Le Hen <jeremie@le-hen.org>
---
 release/picobsd/build/picobsd | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

(limited to 'release/picobsd/build')

diff --git a/release/picobsd/build/picobsd b/release/picobsd/build/picobsd
index 9135a34..4e1c023 100755
--- a/release/picobsd/build/picobsd
+++ b/release/picobsd/build/picobsd
@@ -495,14 +495,15 @@ populate_floppy_fs() {		# OK
     else
 	excl=""
     fi
-    (cd ${PICO_TREE}/floppy.tree ; tar -cf - --exclude CVS ${excl} . ) | \
+    (cd ${PICO_TREE}/floppy.tree ; tar -cf - --exclude CVS --exclude .svn \
+    		${excl} . ) | \
 		(cd ${dst} ; tar x${o_tarv}f - )
     log "Copied from generic floppy-tree `echo; ls -laR ${dst}`"
 
     srcdir=${MY_TREE}/floppy.tree
     if [ -d ${srcdir} ] ; then
 	log "update with type-specific files:"
-	(cd ${srcdir} ; tar -cf - --exclude CVS . ) | \
+	(cd ${srcdir} ; tar -cf - --exclude CVS --exclude .svn . ) | \
 	    (cd ${dst} ; tar x${o_tarv}f - )
 	log "Copied from type floppy-tree `echo; ls -laR ${dst}`"
     else
@@ -510,7 +511,7 @@ populate_floppy_fs() {		# OK
     fi
     if [ -d ${srcdir}.${SITE} ] ; then
 	log "Update with site-specific (${SITE}) files:"
-	(cd ${srcdir}.${SITE} ; tar -cf - --exclude CVS . ) | \
+	(cd ${srcdir}.${SITE} ; tar -cf - --exclude CVS --exclude .svn . ) | \
 	    (cd ${dst} ; tar x${o_tarv}f - )
 	log "Copied from site floppy-tree `echo; ls -laR ${dst}`"
     else
@@ -593,7 +594,7 @@ populate_mfs_tree() {
     for MFS_TREE in ${PICO_TREE}/mfs_tree ${MY_TREE}/mfs_tree ; do
 	if [ -d ${MFS_TREE} ] ; then
 	    log "Copy ${MFS_TREE} ..."
-	    (cd ${MFS_TREE} ; tar -cf - --exclude CVS . ) | \
+	    (cd ${MFS_TREE} ; tar -cf - --exclude CVS --exclude .svn . ) | \
 		    (cd ${dst} ; tar x${o_tarv}f - )
 	fi
     done
-- 
cgit v1.1