Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)

To: elad%netbsd.org@localhost
Subject: Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
From: Michal Suchanek <hramrach%centrum.cz@localhost>
Date: Sun, 15 Nov 2009 16:44:23 +0100

Hello

IMHO if SSP is supposed to be usable in NetBSD then the releases
should be compiled *with* SSP.

It's not a feature that can just be compiled in/out at a whim, it
affects all the code and is incompatible with some constructs that
would compile and run otherwise.

So unless the common response to a SSP problem is going to be "try
with SSP off" this should be in the release builds so that all
affected code is build-tested and run-tested with SSP on.

5% (or how many it turns out to be) can be lost and gained by many
things besides SSP so any person interested in tuning a system for
their particular workload should tune all relevant parameters, not
just SSP.

Thanks

Michal

Follow-Ups:
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: Rhialto

References:
- HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386
  - From: Matthias Scheler
- Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: Matthias Scheler
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: Elad Efrat
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: David Holland
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: Elad Efrat
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: David Holland
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: Elad Efrat
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: David Holland
- Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
  - From: Elad Efrat

Prev by Date: daily CVS update output
Next by Date: Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
Previous by Thread: Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
Next by Thread: Re: Stack Smash Protection disabled (was HEADS-UP: Stack Smash Protection enabled by default for amd64 and i386)
Indexes:

Home | Main Index | Thread Index | Old Index