[gnome-continuous-yocto/gnomeostree-3.28-rocko: 6083/8267] glibc: Configure with extra hardening options

[Emmanuele Bassi <ebassi src gnome org>]

commit 4f8d1e737a2cf1e4cc3ee8cda90681e401a40954
Author: Khem Raj <raj khem gmail com>
Date:   Fri May 26 09:15:01 2017 -0700

    glibc: Configure with extra hardening options
    
    (From OE-Core rev: 08dbaadbb6fadbaa9e0d1542f64864018b6243e5)
    
    Signed-off-by: Khem Raj <raj khem gmail com>
    Signed-off-by: Ross Burton <ross burton intel com>
    Signed-off-by: Richard Purdie <richard purdie linuxfoundation org>

 meta/recipes-core/glibc/glibc_2.25.bb |    4 ++++
 1 files changed, 4 insertions(+), 0 deletions(-)
---
diff --git a/meta/recipes-core/glibc/glibc_2.25.bb b/meta/recipes-core/glibc/glibc_2.25.bb
index ab6fbbe..83a1249 100644
--- a/meta/recipes-core/glibc/glibc_2.25.bb
+++ b/meta/recipes-core/glibc/glibc_2.25.bb
@@ -77,6 +77,10 @@ EXTRA_OECONF = "--enable-kernel=${OLDEST_KERNEL} \
                 --with-headers=${STAGING_INCDIR} \
                 --without-selinux \
                 --enable-obsolete-rpc \
+                --enable-tunables \
+                --enable-bind-now \
+                --enable-stack-protector=strong \
+                --enable-stackguard-randomization \
                 ${GLIBC_EXTRA_OECONF}"
 
 EXTRA_OECONF += "${@get_libc_fpu_setting(bb, d)}"