[PATCH] security: CONFIG_HARDENED_USERCOPY does not need to select BUG
Kees Cook
keescook at chromium.org
Fri Jun 29 20:27:08 UTC 2018
On Fri, Jun 29, 2018 at 1:04 PM, Kamal Mostafa <kamal at canonical.com> wrote:
> Allows for CONFIG_HARDENED_USERCOPY without CONFIG_BUG.
>
> Signed-off-by: Kamal Mostafa <kamal at canonical.com>
> ---
> security/Kconfig | 1 -
> 1 file changed, 1 deletion(-)
>
> diff --git a/security/Kconfig b/security/Kconfig
> index c430206..7667774 100644
> --- a/security/Kconfig
> +++ b/security/Kconfig
> @@ -153,7 +153,6 @@ config HAVE_HARDENED_USERCOPY_ALLOCATOR
> config HARDENED_USERCOPY
> bool "Harden memory copies between kernel and userspace"
> depends on HAVE_HARDENED_USERCOPY_ALLOCATOR
> - select BUG
> imply STRICT_DEVMEM
> help
> This option checks for obviously wrong memory regions when
Do the lkdtm tests for usercopy correctly halt the kernel thread if
CONFIG_BUG is removed?
-Kees
--
Kees Cook
Pixel Security
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list