[Commotion-dev] Stack Smashing Protection on OpenWRT
Andrew Reynolds
andrew at opentechinstitute.org
Fri Feb 7 16:26:44 UTC 2014
Hi all,
Does anyone have experience with OpenWRT's stack smashing protection
toolchain option? I've been trying to compile Commotion with SSP and
haven't had any luck.
I can enable SSP in menuconfig and build the Commotion image with no
problems, but that doesn't seem to add the stack-protector flag to any
of the build options.
I've tried adding -fstack-protector, -fstack-protector-all, and
-fstack-protector-strong to CFLAGS, CXXFLAGS, and TARGET_CFLAGS in the
Makefile of my test package, which contains a vulnerable buffer
overflow. In each case, the vulnerability is still exploitable.
Any idea what I'm missing?
-andrew
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 901 bytes
Desc: OpenPGP digital signature
URL: <http://lists.chambana.net/pipermail/commotion-dev/attachments/20140207/4f59e690/attachment.sig>
More information about the Commotion-dev
mailing list