Comments (5)
-fstack-protector-all
- All functions use stack cookies.
-fstack-protector-strong
- Functions use stack cookies if they have arrays on the stack, take memory references to their own stack variables, call alloca(), or use variable-length arrays (VLA).
Apparently these compiler switches enable them. But I guess they'd need to be specified in a compiler-agnostic way since the speedups may be compiled e.g. with microsoft's compiler if someone is on windows.
from markupsafe.
If they cannot be enabled with a compiler flag, #pragma
or some other preprocessor directive this sounds more like something setuptools would have to do (as all we do to build the speedups extension is this)
from markupsafe.
Can't you use just CFLAGS=-fstack-protect-all
?
Use it by default is not common practice on Python, and it makes this library less portable.
from markupsafe.
I'm not convinced this is a good idea. I looked at a few other projects and none of them had these flags set, including SQLAlchemy and Cryptography, two widely used libraries with C components. Is MarkupSafe the only package that raised this warning? Re: portability, will this affect wheels I build and release to PyPI? Does setting that env var and telling pip to build from source accomplish what you need? Without understanding this more, I'm not planning on implementing it.
from markupsafe.
Closing due to lack of information. If this is important to you, I'll need help to understand and implement it correctly.
from markupsafe.
Related Issues (20)
- Unable to install under git bash HOT 2
- Build Error HOT 3
- Removal of soft_unicode has broken many packages HOT 2
- `striptags` doesn't remove tags containing newlines HOT 1
- Python.h no such file or directory HOT 1
- s390x support
- Wheel for Python 3.11 HOT 4
- release 2.1.2 HOT 1
- DEPRECATION: MarkupSafe is being installed using the legacy 'setup.py install' method HOT 1
- Imports from _speedups have side effects HOT 1
- Unable to upgrade Markupsafe due to dependency with Werkzeug and Jinja2, best possible combination only possible with earlier versions HOT 7
- Return type for methods covered by `_simple_escaping_wrapper` is wrong HOT 1
- Missing override to `format_map` HOT 3
- pin markupsafe==2.0.1 HOT 1
- Python 3.12 manylinux wheels HOT 4
- str method argument escaping is inconsistent HOT 3
- Building markupsafe wheel fails on 3.13a1 HOT 7
- Markup.striptags: comments now get replaced with a space HOT 1
- Some sort of mapping function HOT 2
- Should we remove the C extension? HOT 7
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from markupsafe.