From 0bf4caf48236e2286c99d8dd6a0740b5cbc273cb Mon Sep 17 00:00:00 2001
From: Mikko Ylinen <mikko.ylinen@intel.com>
Date: Wed, 4 Sep 2019 10:17:28 +0300
Subject: [PATCH] kernel: enable STACKPROTECTOR configs in security.conf

As per the comments in security.conf, the intention was to
enable STACKPROTECTOR and STACKPROTECTOR_STRONG.

The current config leaves them unset in the final .config
and also prevents other fragments from overriding the setting.

Set both to =y as indicated in the comments.

Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
---
 kernel/configs/fragments/common/security.conf | 2 +-
 kernel/kata_config_version                    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/kernel/configs/fragments/common/security.conf b/kernel/configs/fragments/common/security.conf
index 3858c1041a..c5836b7457 100644
--- a/kernel/configs/fragments/common/security.conf
+++ b/kernel/configs/fragments/common/security.conf
@@ -2,5 +2,5 @@
 # Let's enable stack protection checks, and strong checks
 # Estimated cost (detailed in the kernel config files)
 # is maybe 2.3% for both
-CONFIG_STACKPROTECTOR
+CONFIG_STACKPROTECTOR=y
 CONFIG_STACKPROTECTOR_STRONG
diff --git a/kernel/kata_config_version b/kernel/kata_config_version
index 95f9650f01..e373ee695f 100644
--- a/kernel/kata_config_version
+++ b/kernel/kata_config_version
@@ -1 +1 @@
-49
+50