19 Feb
2014
19 Feb
'14
07:21
On Wed, Feb 19, 2014 at 07:56:19AM +0100, Malte Gell wrote:
At least for openSUSE 12.3 CONFIG_CC_STACKPROTECTOR is not set for the kernel. Why? Does it not provide some more security or does it even break something? Would it be safe to set CONFIG_CC_STACKPROTECTOR when you build your own kernel?
It is safe to enable (and 13.1 has it enabled). We had some performance concerns, mostly due to a confusion between CONFIG_CC_STACKPROTECTOR and CONFIG_CC_STACKPROTECTOR_ALL. That said, it will probably not help much, as kernel problems are usually not stack overflows. Ciao, Marcus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org