On 2011-09-16, David Coppa <dco...@gmail.com> wrote: > On Fri, Sep 16, 2011 at 9:58 AM, Jeffrey Walton <noloa...@gmail.com> wrote: > >> Probably off topic: ?I did not see Crypto++ in packages >> (http://mirror.ece.vt.edu/pub/OpenBSD/4.9/packages/i386/). When does a >> program or library move from ports and packages >> (http://www.openbsd.org/faq/faq15.html#PkgVsPorts)? > > That's because there are no packages available as of now...
There are for 4.9. cryptopp wasn't correctly added to the ports tree until June this year. >> If interested, attached is a patch I use to add linker hardening. I >> apply it against Crypto++'s source tree (which should not be too >> different from OpenBSD's copy). -z relro and -z,now mitigate GOT and >> PLT attacks, while PIE adds ASLR (I'm not clear if its a stock setting >> for OpenBSD). > > Thanks Jeff, I will have a look at it. Make sure to conditionalize PIE on architecture; it's not supported on hppa/arm yet.
