[Bug 1317307] Re: Make -fstack-protector-strong the default in gcc 4.9

Steve Beattie sbeattie at ubuntu.com
Mon May 19 18:01:19 UTC 2014 

For clarification purposes, I'm attaching interdiff output between the
updated version of the gcc-default-ssp.diff and the version in gcc
4.9.0-4ubuntu2 currently in utopic-proposed. The differences are
threefold:

  1) update the definition of the SSP_DEFAULT_SPEC macro to default to
-fstack-protector-strong, and to disable that definition additionally if
-fstack-protector is given on the command line.

  2) Adjust the invocation documentation to inform users that the
default is now -fstack-protector-strong by default.

  3) Adjust in the invocation documentation the location of the
description of the default minimum ssp-buffer-size to actually fall
under the section for 'ssp-buffer-size' as due to fuzzy patching, it was
getting applied incorrectly under the section on 'min-size-for-stack-
sharing'

(The reason we lowered the minimum buffer size in Ubuntu 10.10 that gcc
would consider for determining whether to apply stack protection to that
function or not was to get a few more functions covered by -fstack-
protector without going to -fstack-protector-all and paying the costs
thereof.)

** Patch added: "interdiff-update-ssp-default.diff"
   https://bugs.launchpad.net/ubuntu/+source/gcc-4.9/+bug/1317307/+attachment/4115554/+files/interdiff-update-ssp-default.diff

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to gcc-4.9 in Ubuntu.
https://bugs.launchpad.net/bugs/1317307

Title:
  Make -fstack-protector-strong the default in gcc 4.9

Status in “gcc-4.9” package in Ubuntu:
  In Progress

Bug description:
  In gcc 4.9, the new option -fstack-protector-strong is supported. The
  advantages of using this option over -fstack-protector and -fstacke-
  protector-all are covered in
  http://www.outflux.net/blog/archives/2014/01/27/fstack-protector-
  strong/.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gcc-4.9/+bug/1317307/+subscriptions

More information about the foundations-bugs mailing list