[d-kernel] [PATCH 5.10.y] config: CONFIG_RANDOMIZE_BASE=y
Vitaly Chikunov
vt на altlinux.org
Чт Апр 11 19:27:07 MSK 2024
On Thu, Apr 11, 2024 at 02:03:53PM +0300, dutyrok at altlinux.org wrote:
> From: Alexandr Shashkin <dutyrok at altlinux.org>
>
> Enable kernel address space layout randomization to prevent guest
> security exploits based on the location of kernel objects.
Полагаю, это для std-def/p10.
Applied, thanks.
>
> Signed-off-by: Alexandr Shashkin <dutyrok at altlinux.org>
> ---
> config | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
> diff --git a/config b/config
> index 9bd005564e56..e5917be74550 100644
> --- a/config
> +++ b/config
> @@ -473,7 +473,7 @@ CONFIG_CRASH_DUMP=y
> # CONFIG_KEXEC_JUMP is not set
> CONFIG_PHYSICAL_START=0x1000000
> CONFIG_RELOCATABLE=y
> -# CONFIG_RANDOMIZE_BASE is not set
> +CONFIG_RANDOMIZE_BASE=y
> CONFIG_PHYSICAL_ALIGN=0x1000000
> CONFIG_HOTPLUG_CPU=y
> # CONFIG_BOOTPARAM_HOTPLUG_CPU0 is not set
> --
> 2.33.8
>
> _______________________________________________
> devel-kernel mailing list
> devel-kernel at lists.altlinux.org
> https://lists.altlinux.org/mailman/listinfo/devel-kernel
Подробная информация о списке рассылки devel-kernel