Received: by 10.223.185.116 with SMTP id b49csp6255304wrg;
        Wed, 28 Feb 2018 06:32:05 -0800 (PST)
X-Google-Smtp-Source: AH8x2257TYsE8H8fQiAjZXMnDrZaWf6mEcKvsbB8HlNiP5OYK856GDH+szER/EnANKVlHXrw1mcY
X-Received: by 2002:a17:902:8285:: with SMTP id y5-v6mr18526209pln.190.1519828325253;
        Wed, 28 Feb 2018 06:32:05 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1519828325; cv=none;
        d=google.com; s=arc-20160816;
        b=l8h/NZnOEKwC2MVthjvF1Lt420eyaMnJP/VBjngzpp00DZUMVJy1efSAGVzbvfLnkG
         XL05iVggKZZyo+0Pco6KM3eefPhDfpcNnzs+AUEftSup1qRcoP/ZFrdLVVivV7+8aWSi
         udEZd17hpfyVmLYamgplG8wRqAgIpUCHwApuAYWpz9sQn/klelg4TJiGLefQKCVMH7GS
         eCRnnbnq4uoofOb016iLSxgx6nNXZaQy302txyJqZSPXL/6cqLj7G/Y4l2OW9tuqtCX2
         O42kemxOGKo57zk+dgTBgprLPcKUVVD++T0DdJkzed9Js5c39eKzF6ka/MmCUUo8+Zbj
         RC9w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:content-disposition
         :mime-version:message-id:subject:cc:to:from:date:dkim-signature
         :arc-authentication-results;
        bh=iomQ1J7o3UWUqhV7v91Kswn2UXPSlUB4AVwkcqhYuJ0=;
        b=sG13MJRCCZap/GAMOTus0QJIGV04f4oM/um+ofWYHUx8SiqjMqmxH6GN/k0EPBf9GL
         AZZhdiWzfsHwyw6fLCkpKT21Z2J05EcK6xljgRrcqAbBV8m0M3UOi6iYV8Pq/R2eU02n
         h1c0XPudObb6eBiS2l1BuBjzKlvmcs1oGCGH/u/oc9OaesAWGtoqJ52nrgz5al9ZWwnS
         3a1lot9OjMCgGM4EUrvDYt7KL//Ck6nRa4Rlk+oyZnRi7MC2JxM4XeD9huTO4ttKJt78
         WIomXzuFSxrYYx4d9r7y5Zp1H37hf96RAwooh7fjv2O7TU76asJ6FNI6yKRBFT3zanyV
         hEtw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=nq/bAiZj;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id m10-v6si1384102pll.436.2018.02.28.06.31.50;
        Wed, 28 Feb 2018 06:32:05 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=nq/bAiZj;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1752663AbeB1Oaq (ORCPT <rfc822;zzmahb@gmail.com> + 99 others);
        Wed, 28 Feb 2018 09:30:46 -0500
Received: from mail-pg0-f65.google.com ([74.125.83.65]:39468 "EHLO
        mail-pg0-f65.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1752241AbeB1Oap (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 28 Feb 2018 09:30:45 -0500
Received: by mail-pg0-f65.google.com with SMTP id w16so99431pgv.6
        for <linux-kernel@vger.kernel.org>; Wed, 28 Feb 2018 06:30:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=date:from:to:cc:subject:message-id:mime-version:content-disposition
         :user-agent;
        bh=iomQ1J7o3UWUqhV7v91Kswn2UXPSlUB4AVwkcqhYuJ0=;
        b=nq/bAiZjeMBBE2s2glGQQGRARulUwvoxOXtVXTpWj/D/f+kBzJA5yutUlVsFlCp1o0
         CoepQSk8Etm30n128ZimBgyq9z+N31bnVPUZ41NpAJO2AatJWdp2Eei3sOXhQ/tkdb3o
         uXMULbdx+GtAO8sG/YglNt5Am80iTOzw9iu3eL8hRO35dGxUUGSDMeCdrHCw0u+lKnk0
         SA7AycXJdzRZUS0GJuv62TdblH8gXHCP+KBttSrhY7mGhakYr5JqH/39Lq0EKgibEjOr
         XCuBSJ+KlA2/pf6fBoAVH+4ZVA0A7XB1Ox9MgxKaaUSQ6U0QtkejKON9ACv09w04zeoF
         XZtQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:mime-version
         :content-disposition:user-agent;
        bh=iomQ1J7o3UWUqhV7v91Kswn2UXPSlUB4AVwkcqhYuJ0=;
        b=FSpM/ijymr6fKjm61LdVolMejR5elul89gBnXOMBWJTEX/pV999AvBfDxjWDhER+VQ
         z8t9R3rBnOEhoKpYTR8FLQ4e5gpljNcrMvpFKqJgaekPH8+/P03K8yQIC2S0gNafZ4Pc
         qE9gRVECHfxxDeigiWv7KIjULUR7IcAe+eiszhNU52bgO62nv43mKFvEaIcXRK1d+EX8
         lHpPFBayvQfDy0Sqca+zmxeCrg8MhFJqQs//2JsZvCGpr1BOVUK6ZOXVTylQbZZ7wTAJ
         4MVanMX8BIgXHRrTIuJPc8hVDczVzHnaF2mh9duDekYJhyinrkmK935uBWWFpZ+K8XI1
         /wHA==
X-Gm-Message-State: APf1xPBrre9E9QKdb7d7mUVnXMStSUxSXjXVKzIUvylTsvi10nJdtcX7
        oFK+UTXJxvsjP+0CZKek2Bo=
X-Received: by 10.101.98.85 with SMTP id q21mr14103528pgv.182.1519828244876;
        Wed, 28 Feb 2018 06:30:44 -0800 (PST)
Received: from pjb1027-Latitude-E5410 ([58.227.15.43])
        by smtp.gmail.com with ESMTPSA id w83sm4184282pfi.171.2018.02.28.06.30.40
        (version=TLS1_2 cipher=AES128-SHA bits=128/128);
        Wed, 28 Feb 2018 06:30:44 -0800 (PST)
Date:   Wed, 28 Feb 2018 23:30:37 +0900
From:   Jinbum Park <jinb.park7@gmail.com>
To:     linux-arm-kernel@lists.infradead.org, linux-kernel@vger.kernel.org,
        kernel-hardening@lists.openwall.com
Cc:     pombredanne@nexb.co, gregkh@linuxfoundation.org,
        tglx@linutronix.de, kstewart@linuxfoundation.org,
        luto@amacapital.net, dsafonov@virtuozzo.com, keescook@chromium.org,
        will.deacon@arm.com, mark.rutland@arm.com, danielmicay@gmail.com,
        arnd@arndb.de, catalin.marinas@arm.com
Subject: [kernel-hardening] [PATCH 2/2] arm: Kconfig: Add
 ARCH_HAS_FORTIFY_SOURCE
Message-ID: <20180228143037.GA3150@pjb1027-Latitude-E5410>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.5.21 (2010-09-15)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

CONFIG_FORTIFY_SOURCE detects various overflows at compile-time.
(6974f0c4555e ("include/linux/string.h:
add the option of fortified string.h functions)

ARCH_HAS_FORTIFY_SOURCE means that the architecture can be built and
run with CONFIG_FORTIFY_SOURCE.

Since ARM can be built and run with that flag like other architectures,
select ARCH_HAS_FORTIFY_SOURCE as default.

Signed-off-by: Jinbum Park <jinb.park7@gmail.com>
---
 arch/arm/Kconfig | 1 +
 1 file changed, 1 insertion(+)

diff --git a/arch/arm/Kconfig b/arch/arm/Kconfig
index 7e3d535..3765336 100644
--- a/arch/arm/Kconfig
+++ b/arch/arm/Kconfig
@@ -7,6 +7,7 @@ config ARM
 	select ARCH_HAS_DEBUG_VIRTUAL if MMU
 	select ARCH_HAS_DEVMEM_IS_ALLOWED
 	select ARCH_HAS_ELF_RANDOMIZE
+	select ARCH_HAS_FORTIFY_SOURCE
 	select ARCH_HAS_SET_MEMORY
 	select ARCH_HAS_PHYS_TO_DMA
 	select ARCH_HAS_STRICT_KERNEL_RWX if MMU && !XIP_KERNEL
-- 
1.9.1