[uClibc] PATCH: config option for simplified canary version (SSP)

Peter S. Mazinger ps.m at gmx.net
Wed Jan 12 09:47:29 UTC 2005


Hello!

The attached patch adds a config option, that allows to choose a 
simplified canary version that does not access any /dev/*random files.
ssp.c supports already this.

Peter

-- 
Peter S. Mazinger <ps dot m at gmx dot net>           ID: 0xA5F059F2
Key fingerprint = 92A4 31E1 56BC 3D5A 2D08  BB6E C389 975E A5F0 59F2
-------------- next part --------------
--- extra/Configs/Config.in.mps	2005-01-12 10:36:20 +0100
+++ extra/Configs/Config.in	2005-01-12 10:36:34 +0100
@@ -1110,6 +1110,15 @@
 	  gcc version, where __guard and __stack_smash_handler are removed from libgcc.
 	  Most people will answer N.
 
+config SSP_QUICK_CANARY
+	bool "Simple propolice canary w/o accessing /dev/*random"
+	depends on UCLIBC_HAS_SSP
+	default n
+	help
+	  Propolice uses a simplified version of the canary, without accessing
+	  /dev/*random.
+	  Most people will answer N.
+
 choice
 	prompt "Propolice protection blocking signal"
 	depends on UCLIBC_HAS_SSP


More information about the uClibc mailing list