Skip to content
Snippets Groups Projects
Verified Commit d0b91469 authored by Jan Pavlinec's avatar Jan Pavlinec Committed by Richard Muzik
Browse files

configs/common/hardening: enable SSP for executables by default

parent 223d6f94
Branches
Tags
1 merge request!742configs/common/hardening: enable SSP for executables by default
Pipeline #127522 passed with stages
in 10 minutes and 21 seconds
Hide whitespace changes
Inline Side-by-side
configs/common/hardening
+ 3
0
View file @ d0b91469
...@@ -8,5 +8,8 @@ CONFIG_PKG_FORTIFY_SOURCE_2=y ...@@ -8,5 +8,8 @@ CONFIG_PKG_FORTIFY_SOURCE_2=y
CONFIG_KERNEL_CC_STACKPROTECTOR_STRONG=y CONFIG_KERNEL_CC_STACKPROTECTOR_STRONG=y
CONFIG_PKG_CC_STACKPROTECTOR_STRONG=y CONFIG_PKG_CC_STACKPROTECTOR_STRONG=y
# Enable Stack-Smashing Protection for every executable build
CONFIG_GCC_DEFAULT_SSP=y
# Enable seccomp in kernel to use procd-seccomp # Enable seccomp in kernel to use procd-seccomp
CONFIG_LXC_SECCOMP=y CONFIG_LXC_SECCOMP=y
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment