[Trusty][PATCH 0/4] stackprotector config / ARM bootloader
Kamal Mostafa
kamal at canonical.com
Fri Dec 11 19:53:22 UTC 2015
The next 3.13-stable will likely include the two Kees Cook 3.14-mainline
"stackprotector" patches below, in order to fix an armhf build problem in 3.13
(which Trusty currently avoids via a SAUCE patch)[0].
For Trusty, this will mean:
- Trusty configs must choose one of CC_STACKPROTECTOR_{NONE,REGULAR,STRONG}
for arches that enable CC_STACKPROTECTOR.
- Trusty can drop the SAUCE patch (enabling the stack protector for the
ARM compressed bootloader).
-Kamal
[0] https://lists.ubuntu.com/archives/kernel-team/2015-December/066769.html
.....
Kamal Mostafa (2):
UBUNTU: [Config] updateconfigs: select CC_STACKPROTECTOR_REGULAR
Revert "UBUNTU: SAUCE: disable stack-protector for ARM compressed
bootloader"
Kees Cook (2):
stackprotector: Unify the HAVE_CC_STACKPROTECTOR logic between
architectures
stackprotector: Introduce CONFIG_CC_STACKPROTECTOR_STRONG
Makefile | 20 ++++++-
arch/Kconfig | 67 ++++++++++++++++++++++
arch/arm/Kconfig | 13 +----
arch/arm/Makefile | 4 --
arch/arm/boot/compressed/Makefile | 1 -
arch/arm/boot/compressed/misc.c | 14 +++++
arch/mips/Kconfig | 14 +----
arch/mips/Makefile | 4 --
arch/sh/Kconfig | 15 +----
arch/sh/Makefile | 4 --
arch/x86/Kconfig | 17 +-----
arch/x86/Makefile | 8 +--
debian.master/config/amd64/config.common.amd64 | 1 +
debian.master/config/annotations | 4 +-
debian.master/config/arm64/config.common.arm64 | 1 +
debian.master/config/armhf/config.common.armhf | 1 +
debian.master/config/config.common.ubuntu | 5 +-
debian.master/config/enforce | 2 +-
debian.master/config/i386/config.common.i386 | 1 +
debian.master/config/powerpc/config.common.powerpc | 1 +
debian.master/config/ppc64el/config.common.ppc64el | 1 +
21 files changed, 118 insertions(+), 80 deletions(-)
--
1.9.1
More information about the kernel-team
mailing list