[PATCH v2 2/2] initmem: introduce CONFIG_INIT_ALL_HEAP
Masahiro Yamada
yamada.masahiro at socionext.com
Fri Apr 5 11:35:26 UTC 2019
On Fri, Mar 8, 2019 at 10:27 PM Alexander Potapenko <glider at google.com> wrote:
>
> diff --git a/security/Kconfig.initmem b/security/Kconfig.initmem
> index 27aec394365e..5ce49663777a 100644
> --- a/security/Kconfig.initmem
> +++ b/security/Kconfig.initmem
> @@ -13,6 +13,17 @@ config INIT_ALL_MEMORY
>
> if INIT_ALL_MEMORY
>
> +config INIT_ALL_HEAP
> + bool "Initialize all heap"
> + depends on INIT_ALL_MEMORY
> + select CONFIG_PAGE_POISONING
> + select CONFIG_PAGE_POISONING_NO_SANITY
> + select CONFIG_PAGE_POISONING_ZERO
> + select CONFIG_SLUB_DEBUG
This should like follows (no CONFIG_ prefix):
select PAGE_POISONING
select PAGE_POISONING_NO_SANITY
select PAGE_POISONING_ZERO
select SLUB_DEBUG
But, again, this causes unmet dependency if SLUB=n
> + default y
> + help
> + Enable page poisoning and slub poisoning by default.
> +
> config INIT_ALL_STACK
> bool "Initialize all stack"
> depends on INIT_ALL_MEMORY
> --
> 2.21.0.360.g471c308f928-goog
>
--
Best Regards
Masahiro Yamada
More information about the Linux-security-module-archive
mailing list