Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 3162f751 authored by Arjan van de Ven's avatar Arjan van de Ven Committed by Andi Kleen
Browse files

[PATCH] Add the __stack_chk_fail() function 



GCC emits a call to a __stack_chk_fail() function when the stack canary is
not matching the expected value.

Since this is a bad security issue; lets panic the kernel rather than limping
along; the kernel really can't be trusted anymore when this happens.

Signed-off-by: default avatarArjan van de Ven <arjan@linux.intel.com>
Signed-off-by: default avatarIngo Molnar <mingo@elte.hu>
Signed-off-by: default avatarAndi Kleen <ak@suse.de>
CC: Andi Kleen <ak@suse.de>
parent 0a425405

kernel/panic.c

+12 −0
Original line number Diff line number Diff line
@@ -271,3 +271,15 @@ void oops_exit(void) 
{

	do_oops_enter_exit();

}



#ifdef CONFIG_CC_STACKPROTECTOR

/*

 * Called when gcc's -fstack-protector feature is used, and

 * gcc detects corruption of the on-stack canary value

 */

void __stack_chk_fail(void)

{

	panic("stack-protector: Kernel stack is corrupted");

}

EXPORT_SYMBOL(__stack_chk_fail);

#endif