Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Kernel Configuration Should I Use FORTIFY_SOURCE?
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
jagdpanther
Guru
Guru


Joined: 22 Nov 2003
Posts: 498

PostPosted: Tue Dec 19, 2017 4:06 pm    Post subject: Kernel Configuration Should I Use FORTIFY_SOURCE? Reply with quote

I am about to upgrade from gentoo-sources-4.12.12 to gentoo-sources-4.14.7. Running through "make oldconfig" I am trying to decide if there are any negatives with turning on FORTIFY_SOURCE. Any comments?

Code:
Harden common str/mem functions against buffer overflows (FORTIFY_SOURCE) [N/y/?] (NEW) ?


From the kernel help:
Quote:
CONFIG_FORTIFY_SOURCE:

Detect overflows of buffers in common string and memory functions
where the compiler can determine and validate the buffer sizes.


Sounds like a good thing ... but what might break ?
Back to top
View user's profile Send private message
toralf
Developer
Developer


Joined: 01 Feb 2004
Posts: 3647
Location: Hamburg

PostPosted: Tue Dec 19, 2017 4:45 pm    Post subject: Reply with quote

I run that since eons w/o noticeable hassle.
Back to top
View user's profile Send private message
jagdpanther
Guru
Guru


Joined: 22 Nov 2003
Posts: 498

PostPosted: Wed Dec 20, 2017 2:23 am    Post subject: Reply with quote

toralf:

Thanks.

Four hours after upgrading to new kernel with FORTIFY_SOURCE and no issues.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum