[Seirdy]

You should probably add noexecstack to your ldflags.

I also only use -fstack-protector-strong and -fcf-protection as a fallback in case -fstack-protector-all and -fcf-protection=full cause crashes.

I listed some more in https://news.ycombinator.com/item?id=29191311

[Seirdy]

Late but wanted to clarify/correct for posterity: the reasons why most people don't use "fstack-protector-all" everywhere are typically related to resource usage (not crashes), esp. in constrained environments. I have old hardware so I don't use it everywhere just yet.