Re: [PATCH 21/30] stack-protector: test compiler capability in Kconfig and drop AUTO mode

From: Kees Cook
Date: Fri Apr 13 2018 - 16:41:41 EST

Next message: Alexei Starovoitov: "Re: [PATCH] x86/cpufeature: guard asm_volatile_goto usage with CC_HAVE_ASM_GOTO"
Previous message: Bruno E. O. Meneguele: "Re: [PATCH] lockdown: fix coordination of kernel module signature verification"
In reply to: Linus Torvalds: "Re: [PATCH 21/30] stack-protector: test compiler capability in Kconfig and drop AUTO mode"
Next in thread: Masahiro Yamada: "Re: [PATCH 21/30] stack-protector: test compiler capability in Kconfig and drop AUTO mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Apr 13, 2018 at 11:11 AM, Linus Torvalds
<torvalds@xxxxxxxxxxxxxxxxxxxx> wrote:
> config STACKPROTECTOR_FLAGS
> string
> default "-fstack-protector-strong" if CC_STACKPROTECTOR_STRONG
> default "-fstack-protector" if CC_STACKPROTECTOR
> default "-fno-stack-protector" if CC_HAS_STACKPROTECTOR_NONE
> default ""
>
> which is really simple and straightforward. In the presense of
> multiple defaults, the first is picked, so this _automatically_ does
> that whole priority ordering.

Ah, perfect! Yes, this is a much better solution.

-Kees

--
Kees Cook
Pixel Security

Next message: Alexei Starovoitov: "Re: [PATCH] x86/cpufeature: guard asm_volatile_goto usage with CC_HAVE_ASM_GOTO"
Previous message: Bruno E. O. Meneguele: "Re: [PATCH] lockdown: fix coordination of kernel module signature verification"
In reply to: Linus Torvalds: "Re: [PATCH 21/30] stack-protector: test compiler capability in Kconfig and drop AUTO mode"
Next in thread: Masahiro Yamada: "Re: [PATCH 21/30] stack-protector: test compiler capability in Kconfig and drop AUTO mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]