mirror of
git://git.openwrt.org/openwrt/openwrt.git
synced 2024-12-24 07:33:04 +00:00
kernel: Activate CONFIG_SLAB_FREELIST_RANDOM
This activates CONFIG_SLAB_FREELIST_RANDOM. This option make the free list less predictable. This makes it harder to exploit heap based security vulnerabilities. This adds a little bit more code to the kernel and a small additional compute overhead. This option is activated in Debian by default. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
This commit is contained in:
parent
626f5f77f7
commit
467aa08f8a
@ -5464,7 +5464,7 @@ CONFIG_SIGNALFD=y
|
|||||||
# CONFIG_SLAB is not set
|
# CONFIG_SLAB is not set
|
||||||
CONFIG_SLABINFO=y
|
CONFIG_SLABINFO=y
|
||||||
CONFIG_SLAB_FREELIST_HARDENED=y
|
CONFIG_SLAB_FREELIST_HARDENED=y
|
||||||
# CONFIG_SLAB_FREELIST_RANDOM is not set
|
CONFIG_SLAB_FREELIST_RANDOM=y
|
||||||
CONFIG_SLAB_MERGE_DEFAULT=y
|
CONFIG_SLAB_MERGE_DEFAULT=y
|
||||||
# CONFIG_SLHC is not set
|
# CONFIG_SLHC is not set
|
||||||
# CONFIG_SLICOSS is not set
|
# CONFIG_SLICOSS is not set
|
||||||
|
@ -5754,7 +5754,7 @@ CONFIG_SIGNALFD=y
|
|||||||
# CONFIG_SLAB is not set
|
# CONFIG_SLAB is not set
|
||||||
CONFIG_SLABINFO=y
|
CONFIG_SLABINFO=y
|
||||||
CONFIG_SLAB_FREELIST_HARDENED=y
|
CONFIG_SLAB_FREELIST_HARDENED=y
|
||||||
# CONFIG_SLAB_FREELIST_RANDOM is not set
|
CONFIG_SLAB_FREELIST_RANDOM=y
|
||||||
CONFIG_SLAB_MERGE_DEFAULT=y
|
CONFIG_SLAB_MERGE_DEFAULT=y
|
||||||
# CONFIG_SLHC is not set
|
# CONFIG_SLHC is not set
|
||||||
# CONFIG_SLICOSS is not set
|
# CONFIG_SLICOSS is not set
|
||||||
|
Loading…
Reference in New Issue
Block a user