On Sat, Feb 10, 2018 at 12:55 AM, Ulf Magnusson <ulfalizer@xxxxxxxxx> wrote: > Here's a complete updated example, with some stuff from Masahiro added. > > Turns out warnings inside choices get cut off easily in menuconfig, so I > went with just a single warning instead (which should be enough anyway). > > With this version, the only "outputs" that the Makefiles needs to look > at are CC_STACKPROTECTOR_{STRONG,REGULAR,NONE} (and > CC_OPT_STACKPROTECTOR). WANT_CC_OPT_STACKPROTECTOR_AUTO is handled > automatically. > > The caveat related to old .config files mentioned above still applies. > > How many compilers don't support -fno-stack-protector by the way? > > config CC_HAS_STACKPROTECTOR_STRONG > bool > option shell="$CC -Werror -fstack-protector-strong -c -x c /dev/null" > > config CC_HAS_STACKPROTECTOR_REGULAR > bool > option shell="$CC -Werror -fstack-protector -c -x c /dev/null" > > config CC_HAS_STACKPROTECTOR_NONE > bool > default y > option shell="$CC -Werror -fno-stack-protector -c -x c /dev/null" Instead of just $CC for these, we need the test script that runs with all the per-architecture flags configured and runs the actual _build_ test of the output. It is, unfortunately, not sufficient to test that the compiler supports the flag: it has to be tested to produce the correct output too, as there are continual regressions here (old compilers, misbuilt compilers, misconfigured compilers, etc). So, if this could do something like this: config CC_HAS_STACKPROTECTOR_STRONG bool option shell="scripts/gcc-${ARCH}_${BITS}-has-stack-protector.sh $CC $KBUILD_CPPFLAGS" then this could all work from Kconfig. > choice > prompt "Stack Protector buffer overflow detection" > default WANT_CC_STACKPROTECTOR_AUTO Otherwise, this WANT_ approach looks decent. > comment "Warning: Selected stack protector not available" > depends on !(CC_STACKPROTECTOR_STRONG || \ > CC_STACKPROTECTOR_REGULAR || \ > CC_STACKPROTECTOR_NONE) For WANT...AUTO, a warning is fine. for WANT...STRONG or WANT...REGULAR this must fail the build. > config CC_OPT_STACKPROTECTOR > string > default "-fstack-protector-strong" if CC_STACKPROTECTOR_STRONG > default "-fstack-protector" if CC_STACKPROTECTOR_REGULAR > default "-fno-stack-protector" if CC_HAS_STACKPROTECTOR_NONE > # If the compiler doesn't even support > # -fno-stack-protector > default "" > > Of course, at some point you're just moving complexity from one place to > another. Maybe this all-Kconfig approach isn't worth it if people find > it harder to understand. I don't know how bad the Makefiles are here at > the moment. FWIW, it feels more readable in Kconfig, if we can solve the circular issue of $KBUILD_CPPFLAGS... -Kees -- Kees Cook Pixel Security -- To unsubscribe from this list: send the line "unsubscribe linux-s390" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html