Simon Strandman
* Enable -fstack-protector for the new distros for every package by default
Red Hat according to their press statements builds all of their distribution using -fstack-protector, the heuristic stack overflow detection. While we use -D_FORTIFY_SOURCE=2, this one only covers known arrays. I think we should also enable -fstack-protector for all packages. If we enable it by default in the compiler, all software will automatically get the benefit too.
Is it known what impact on performance this will have?
I'll ask ;-) Thanks, Andreas -- Andreas Jaeger, aj@suse.de, http://www.suse.de/~aj/ SUSE LINUX Products GmbH, Maxfeldstr. 5, 90409 Nürnberg, Germany GPG fingerprint = 93A3 365E CE47 B889 DF7F FED1 389A 563C C272 A126