Date: Tue, 16 Apr 2019 10:33:32 +0200 From: Vlastimil Babka <vbabka@...e.cz> To: Andrew Morton <akpm@...ux-foundation.org>, Alexander Potapenko <glider@...gle.com> Cc: linux-security-module@...r.kernel.org, linux-mm@...ck.org, ndesaulniers@...gle.com, kcc@...gle.com, dvyukov@...gle.com, keescook@...omium.org, sspatil@...roid.com, labbott@...hat.com, kernel-hardening@...ts.openwall.com Subject: Re: [PATCH] mm: security: introduce CONFIG_INIT_HEAP_ALL On 4/16/19 4:02 AM, Andrew Morton wrote: > Requiring a kernel rebuild is rather user-hostile. A boot option > (early_param()) would be much more useful and I expect that the loss in > coverage would be small and acceptable? Could possibly use the > static_branch infrastructure. Agreed. There could be a config option to make it default on if no param given. Then a config option to (not) compile this in at all would be probably superfluous, although small systems/architectures without effective static keys might care.
Powered by blists - more mailing lists
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.