about summary refs log tree commit diff
path: root/pkgs/applications/virtualization
diff options
context:
space:
mode:
authorRobin Gloster <mail@glob.in>2016-02-08 23:18:03 +0000
committerRobin Gloster <mail@glob.in>2016-02-08 23:18:03 +0000
commit2f1567ad33d585f93e5314b161fbd2a60fa66e64 (patch)
treef78db089582dcc745f21347920e28b6dd4e0132a /pkgs/applications/virtualization
parent3fcb0285b2195ed9e3d176338440a96b4cee18fc (diff)
OVMF: no stackprotector/pic/fortify hardening
Diffstat (limited to 'pkgs/applications/virtualization')
-rw-r--r--pkgs/applications/virtualization/OVMF/default.nix4


1 files changed, 4 insertions, 0 deletions
diff --git a/pkgs/applications/virtualization/OVMF/default.nix b/pkgs/applications/virtualization/OVMF/default.nix
index 479d625c7de70..513242271a186 100644
--- a/pkgs/applications/virtualization/OVMF/default.nix
+++ b/pkgs/applications/virtualization/OVMF/default.nix
@@ -17,6 +17,10 @@ stdenv.mkDerivation (edk2.setup "OvmfPkg/OvmfPkg${targetArch}.dsc" {
   # TODO: properly include openssl for secureBoot
   buildInputs = [nasm iasl] ++ stdenv.lib.optionals (secureBoot == true) [ openssl ];
 
+  hardening_stackprotector = false;
+  hardening_pic = false;
+  hardening_fortify = false;
+
   unpackPhase = ''
     for file in \
       "${edk2.src}"/{UefiCpuPkg,MdeModulePkg,IntelFrameworkModulePkg,PcAtChipsetPkg,FatBinPkg,EdkShellBinPkg,MdePkg,ShellPkg,OptionRomPkg,IntelFrameworkPkg};

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-21 23:32:46 +0000