[uClibc] PATCH: config option for simplified canary version (SSP)
Peter S. Mazinger
ps.m at gmx.net
Wed Jan 12 09:47:29 UTC 2005
Hello!
The attached patch adds a config option, that allows to choose a
simplified canary version that does not access any /dev/*random files.
ssp.c supports already this.
Peter
--
Peter S. Mazinger <ps dot m at gmx dot net> ID: 0xA5F059F2
Key fingerprint = 92A4 31E1 56BC 3D5A 2D08 BB6E C389 975E A5F0 59F2
-------------- next part --------------
--- extra/Configs/Config.in.mps 2005-01-12 10:36:20 +0100
+++ extra/Configs/Config.in 2005-01-12 10:36:34 +0100
@@ -1110,6 +1110,15 @@
gcc version, where __guard and __stack_smash_handler are removed from libgcc.
Most people will answer N.
+config SSP_QUICK_CANARY
+ bool "Simple propolice canary w/o accessing /dev/*random"
+ depends on UCLIBC_HAS_SSP
+ default n
+ help
+ Propolice uses a simplified version of the canary, without accessing
+ /dev/*random.
+ Most people will answer N.
+
choice
prompt "Propolice protection blocking signal"
depends on UCLIBC_HAS_SSP
More information about the uClibc
mailing list