Since detection of a given fortify failure is sufficient to stop the memory corruption from happening, it doesn't make sense to unconditionally bring down the entire system. Instead, use BUG() which will stop the bad thread of kernel execution (and only optionally panic the system).
Cc: Daniel Micay <[email protected]> Signed-off-by: Kees Cook <[email protected]> --- lib/string.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/lib/string.c b/lib/string.c index a6ee1955a701..ebbb99c775bd 100644 --- a/lib/string.c +++ b/lib/string.c @@ -981,6 +981,7 @@ EXPORT_SYMBOL(strreplace); void fortify_panic(const char *name) { - panic("detected buffer overflow in %s", name); + pr_emerg("detected buffer overflow in %s\n", name); + BUG(); } EXPORT_SYMBOL(fortify_panic); -- 2.7.4 -- Kees Cook Pixel Security
