Document the --enable-default-pie/ssp options

Also document test failures in gcc chapter 8
author: Pierre Labastie <pierre.labastie@neuf.fr> 2022-09-10 13:41:38 +0200
committer: Pierre Labastie <pierre.labastie@neuf.fr> 2022-09-10 13:41:38 +0200
commit: 1bade3f439265d1c964701316922ab5cbfed93c8 (patch)
tree: 1681f7c086b2fc55b1219356356e466ddabad439 /chapter05
parent: 0611f706d5cf2c5f18e18d51f2866956870b131a (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/chapter05/gcc-pass1.xml b/chapter05/gcc-pass1.xml
index 0b7f17913..2c8fc4c31 100644
--- a/chapter05/gcc-pass1.xml
+++ b/chapter05/gcc-pass1.xml
@@ -135,6 +135,20 @@ cd       build</userinput></screen>
       </varlistentry>
 
       <varlistentry>
+      <term><parameter>--enable-default-pie</parameter> and
+      <parameter>--enable-default-ssp</parameter></term>
+        <listitem>
+          <para>Those switches allow GCC to compile programs with
+	  some hardening security features (more information on those in
+	  the <xref linkend="pie-ssp-info"/> in chapter 8). They are not
+	  strictly needed at this stage, since the compiler will only produce
+	  temporary executables. But it is cleaner to have the temporary
+	  packages be as close as possible to the final ones.
+          </para>
+        </listitem>
+      </varlistentry>
+
+      <varlistentry>
         <term><parameter>--disable-shared</parameter></term>
         <listitem>
           <para>This switch forces GCC to link its internal libraries
author	Pierre Labastie <pierre.labastie@neuf.fr>	2022-09-10 13:41:38 +0200
committer	Pierre Labastie <pierre.labastie@neuf.fr>	2022-09-10 13:41:38 +0200
commit	1bade3f439265d1c964701316922ab5cbfed93c8 (patch)
tree	1681f7c086b2fc55b1219356356e466ddabad439 /chapter05
parent	0611f706d5cf2c5f18e18d51f2866956870b131a (diff)