dovecot.m4: Add DC_DOVECOT_HARDENING to check hardening options

author Aki Tuomi <aki.tuomi@dovecot.fi>

Sat, 24 Nov 2018 08:15:04 +0000 (10:15 +0200)

committer Aki Tuomi <aki.tuomi@dovecot.fi>

Thu, 29 Nov 2018 08:18:58 +0000 (10:18 +0200)
author Aki Tuomi <aki.tuomi@dovecot.fi>
Sat, 24 Nov 2018 08:15:04 +0000 (10:15 +0200)
committer Aki Tuomi <aki.tuomi@dovecot.fi>
Thu, 29 Nov 2018 08:18:58 +0000 (10:18 +0200)
diff --git a/m4/dovecot.m4 b/m4/dovecot.m4

index 02e533e1e6e83272afc9969d8b61c7a3ca0edbc9..002e6e756bbddb75588e6065b21521ac35c253f9 100644 (file)
--- a/m4/dovecot.m4
+++ b/m4/dovecot.m4
@@ -316,6 +316,22 @@ AC_DEFUN([AX_SUBST_L],[
         m4_foreach([__var__], [$@], [AC_SUBST(__var__)])
  ])
  
+AC_DEFUN([DC_DOVECOT_HARDENING],[
+        AC_ARG_ENABLE(hardening,
+        AS_HELP_STRING([--enable-hardening=yes], [Enable various hardenings (default: yes)]),
+                enable_hardening=$enableval,
+                enable_hardening=yes)
+
+        AC_MSG_CHECKING([Whether to enable hardening])
+        AC_MSG_RESULT([$enable_hardening])
+
+       AC_CC_PIE
+       AC_CC_F_STACK_PROTECTOR
+       AC_CC_D_FORTIFY_SOURCE
+       AC_CC_RETPOLINE
+       AC_LD_RELRO
+])
+
  AC_DEFUN([DC_DOVECOT],[
         AC_ARG_WITH(dovecot,
           [  --with-dovecot=DIR      Dovecot base directory],
@@ -378,6 +394,7 @@ AC_DEFUN([DC_DOVECOT],[
  
         AM_CONDITIONAL(DOVECOT_INSTALLED, test "$DOVECOT_INSTALLED" = "yes")
  
+       DC_DOVECOT_HARDERNING
         DC_PLUGIN_DEPS
         DC_DOVECOT_TEST_WRAPPER
  ])
author	Aki Tuomi <aki.tuomi@dovecot.fi>
	Sat, 24 Nov 2018 08:15:04 +0000 (10:15 +0200)
committer	Aki Tuomi <aki.tuomi@dovecot.fi>
	Thu, 29 Nov 2018 08:18:58 +0000 (10:18 +0200)