On Thursday 05 September 2013 12:47:01 Tom Wijsman wrote: > What I wonder about here is at which cost this does come, when looking > at the fstack-protector then I see that it "emits extra code"; so, now > the question is what kind of overhead this causes.
We use -fstack-protector-all in the hardened profile, so it is not unknown at all. > I am pretty sure security might not be that important on a real time > system that perhaps isn't connected to the internet; so, besides making > it the default, we might want to introduce the necessary means to turn > it off again, by the very least perhaps documentation would suffice. > > Do you intend to discuss that flag or more generally any security flag? I just want to point out the thread because other people will have something to say about. -- Agostino Sarubbo Gentoo Linux Developer