Home Explore Help
Register Sign In
OpenWrt
/
openwrt
mirror of https://github.com/openwrt/openwrt.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

kernel: Activate CONFIG_SLAB_FREELIST_RANDOM

This activates CONFIG_SLAB_FREELIST_RANDOM.
This option make the free list less predictable. This makes it harder to
exploit heap based security vulnerabilities.

This adds a little bit more code to the kernel and a small additional
compute overhead.

This option is activated in Debian by default.

Signed-off-by: Hauke Mehrtens <[email protected]>
Hauke Mehrtens 2 years ago
parent
626f5f77f7
commit
467aa08f8a
2 changed files with 2 additions and 2 deletions
Split View Show Diff Stats
  1. 1 1
      target/linux/generic/config-5.10
  2. 1 1
      target/linux/generic/config-5.15

+ 1 - 1
target/linux/generic/config-5.10
View File 

@@ -5464,7 +5464,7 @@ CONFIG_SIGNALFD=y
 
 # CONFIG_SLAB is not set
 
 CONFIG_SLABINFO=y
 
 CONFIG_SLAB_FREELIST_HARDENED=y
 
-# CONFIG_SLAB_FREELIST_RANDOM is not set
 
+CONFIG_SLAB_FREELIST_RANDOM=y
 
 CONFIG_SLAB_MERGE_DEFAULT=y
 
 # CONFIG_SLHC is not set
 
 # CONFIG_SLICOSS is not set

+ 1 - 1
target/linux/generic/config-5.15
View File 

@@ -5754,7 +5754,7 @@ CONFIG_SIGNALFD=y
 
 # CONFIG_SLAB is not set
 
 CONFIG_SLABINFO=y
 
 CONFIG_SLAB_FREELIST_HARDENED=y
 
-# CONFIG_SLAB_FREELIST_RANDOM is not set
 
+CONFIG_SLAB_FREELIST_RANDOM=y
 
 CONFIG_SLAB_MERGE_DEFAULT=y
 
 # CONFIG_SLHC is not set
 
 # CONFIG_SLICOSS is not set