Home Explore Help
Sign In
OpenWrt
/
openwrt
mirror of https://github.com/openwrt/openwrt.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

kernel: Activate CONFIG_SLAB_FREELIST_HARDENED

This activates some extra checks in SLAB or SLUB to make it harder to
execute kernel heap exploits. This adds a minor performance
degradation which I haven't measured-.

Many mainstream Linux distributions also activate this option.

Signed-off-by: Hauke Mehrtens <[email protected]>
Hauke Mehrtens 2 years ago
parent
2bab7d273e
commit
ff536eca58
2 changed files with 2 additions and 2 deletions
Unified View Show Diff Stats
  1. 1 1
      target/linux/generic/config-5.10
  2. 1 1
      target/linux/generic/config-5.15

+ 1 - 1
target/linux/generic/config-5.10
View File 

@@ -5463,7 +5463,7 @@ CONFIG_SIGNALFD=y
 
 # CONFIG_SKY2_DEBUG is not set
 
 # CONFIG_SKY2_DEBUG is not set
 
 # CONFIG_SLAB is not set
 
 # CONFIG_SLAB is not set
 
 CONFIG_SLABINFO=y
 
 CONFIG_SLABINFO=y
 
-# CONFIG_SLAB_FREELIST_HARDENED is not set
 
+CONFIG_SLAB_FREELIST_HARDENED=y
 
 # CONFIG_SLAB_FREELIST_RANDOM is not set
 
 # CONFIG_SLAB_FREELIST_RANDOM is not set
 
 CONFIG_SLAB_MERGE_DEFAULT=y
 
 CONFIG_SLAB_MERGE_DEFAULT=y
 
 # CONFIG_SLHC is not set
 
 # CONFIG_SLHC is not set

+ 1 - 1
target/linux/generic/config-5.15
View File 

@@ -5753,7 +5753,7 @@ CONFIG_SIGNALFD=y
 
 # CONFIG_SKY2_DEBUG is not set
 
 # CONFIG_SKY2_DEBUG is not set
 
 # CONFIG_SLAB is not set
 
 # CONFIG_SLAB is not set
 
 CONFIG_SLABINFO=y
 
 CONFIG_SLABINFO=y
 
-# CONFIG_SLAB_FREELIST_HARDENED is not set
 
+CONFIG_SLAB_FREELIST_HARDENED=y
 
 # CONFIG_SLAB_FREELIST_RANDOM is not set
 
 # CONFIG_SLAB_FREELIST_RANDOM is not set
 
 CONFIG_SLAB_MERGE_DEFAULT=y
 
 CONFIG_SLAB_MERGE_DEFAULT=y
 
 # CONFIG_SLHC is not set
 
 # CONFIG_SLHC is not set