summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLinus Torvalds <torvalds@woody.linux-foundation.org>2008-02-22 08:21:38 -0800
committerLinus Torvalds <torvalds@woody.linux-foundation.org>2008-02-22 08:21:38 -0800
commit2c020a99e058cdfc3a073cbfbfcc6ff55d3bfc43 (patch)
treede93c42a9310d6780c8cfde5c60d792c46419db6
parentf9cb02b0be4de3c51edfdd701754e13d9a2d20d6 (diff)
downloadlinux-stable-2c020a99e058cdfc3a073cbfbfcc6ff55d3bfc43.tar.gz
linux-stable-2c020a99e058cdfc3a073cbfbfcc6ff55d3bfc43.tar.bz2
linux-stable-2c020a99e058cdfc3a073cbfbfcc6ff55d3bfc43.zip
Mark CC_STACKPROTECTOR as being BROKEN
It's always been broken, but recent fixes actually made it do something, and now the brokenness shows up as the resulting kernel simply not working at all. So it used to be that you could enable this config option, and it just didn't do anything. Now we'd better stop people from enabling it by mistake, since it _does_ do something, but does it so badly as to be unusable. Code to actually make it work is pending, but incomplete and won't be merged into 2.6.25 in any case. Acked-by: Arjan van de Ven <arjan@infradead.org> Acked-by: Sam Ravnborg <sam@ravnborg.org> Cc: James Morris <jmorris@namei.org> Cc: Ingo Molnar <mingo@elte.hu> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
-rw-r--r--arch/x86/Kconfig2
1 files changed, 1 insertions, 1 deletions
diff --git a/arch/x86/Kconfig b/arch/x86/Kconfig
index 3be2305709b7..4a88cf7695b4 100644
--- a/arch/x86/Kconfig
+++ b/arch/x86/Kconfig
@@ -1054,7 +1054,7 @@ config SECCOMP
config CC_STACKPROTECTOR
bool "Enable -fstack-protector buffer overflow detection (EXPERIMENTAL)"
- depends on X86_64 && EXPERIMENTAL
+ depends on X86_64 && EXPERIMENTAL && BROKEN
help
This option turns on the -fstack-protector GCC feature. This
feature puts, at the beginning of critical functions, a canary