)]}'
{
  "commit": "44c6dc940b190cf22b044a784f3e00a7e7f08b2f",
  "tree": "6aa4149ad96786c80fa9d7b046d26a373d911093",
  "parents": [
    "2bc2f688fdf8808de4f36be563ccdb0bde7c0c54"
  ],
  "author": {
    "name": "Kees Cook",
    "email": "keescook@chromium.org",
    "time": "Tue Feb 06 15:37:45 2018 -0800"
  },
  "committer": {
    "name": "Linus Torvalds",
    "email": "torvalds@linux-foundation.org",
    "time": "Tue Feb 06 18:32:44 2018 -0800"
  },
  "message": "Makefile: introduce CONFIG_CC_STACKPROTECTOR_AUTO\n\nNearly all modern compilers support a stack-protector option, and nearly\nall modern distributions enable the kernel stack-protector, so enabling\nthis by default in kernel builds would make sense.  However, Kconfig does\nnot have knowledge of available compiler features, so it isn\u0027t safe to\nforce on, as this would unconditionally break builds for the compilers or\narchitectures that don\u0027t have support.  Instead, this introduces a new\noption, CONFIG_CC_STACKPROTECTOR_AUTO, which attempts to discover the best\npossible stack-protector available, and will allow builds to proceed even\nif the compiler doesn\u0027t support any stack-protector.\n\nThis option is made the default so that kernels built with modern\ncompilers will be protected-by-default against stack buffer overflows,\navoiding things like the recent BlueBorne attack.  Selection of a specific\nstack-protector option remains available, including disabling it.\n\nAdditionally, tiny.config is adjusted to use CC_STACKPROTECTOR_NONE, since\nthat\u0027s the option with the least code size (and it used to be the default,\nso we have to explicitly choose it there now).\n\nLink: http://lkml.kernel.org/r/1510076320-69931-4-git-send-email-keescook@chromium.org\nSigned-off-by: Kees Cook \u003ckeescook@chromium.org\u003e\nTested-by: Laura Abbott \u003clabbott@redhat.com\u003e\nCc: Masahiro Yamada \u003cyamada.masahiro@socionext.com\u003e\nCc: Arnd Bergmann \u003carnd@arndb.de\u003e\nCc: Josh Triplett \u003cjosh@joshtriplett.org\u003e\nSigned-off-by: Andrew Morton \u003cakpm@linux-foundation.org\u003e\nSigned-off-by: Linus Torvalds \u003ctorvalds@linux-foundation.org\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "f0f934097f64e8cbb5906170f73964bcaa9ba42a",
      "old_mode": 33188,
      "old_path": "Makefile",
      "new_id": "d192dd826ccea13f5fda798a570e65e687d3e0e2",
      "new_mode": 33188,
      "new_path": "Makefile"
    },
    {
      "type": "modify",
      "old_id": "9330a9d79dc357d3a28438965b71cf8aee67f761",
      "old_mode": 33188,
      "old_path": "arch/Kconfig",
      "new_id": "76c0b54443b1fd7563414622988032d9f63fc11f",
      "new_mode": 33188,
      "new_path": "arch/Kconfig"
    },
    {
      "type": "modify",
      "old_id": "7fa0c4ae6394f028fa09694b219314dd3d7d8731",
      "old_mode": 33188,
      "old_path": "kernel/configs/tiny.config",
      "new_id": "9bfdffc100da48338c71a76b1a74a4f176f8ecdc",
      "new_mode": 33188,
      "new_path": "kernel/configs/tiny.config"
    }
  ]
}