[PATCH] mm: security: introduce CONFIG_INIT_HEAP_ALL
vbabka at suse.cz
Tue Apr 16 08:30:20 UTC 2019
On 4/12/19 2:45 PM, Alexander Potapenko wrote:
> +config INIT_HEAP_ALL
> + bool "Initialize kernel heap allocations"
Calling slab and page allocations together as "heap" is rather uncommon
in the kernel I think. But I don't have a better word right now.
> + default n
> + help
> + Enforce initialization of pages allocated from page allocator
> + and objects returned by kmalloc and friends.
> + Allocated memory is initialized with zeroes, preventing possible
> + information leaks and making the control-flow bugs that depend
> + on uninitialized values more deterministic.
> config GCC_PLUGIN_STRUCTLEAK_VERBOSE
> bool "Report forcefully initialized variables"
> depends on GCC_PLUGIN_STRUCTLEAK
More information about the Linux-security-module-archive