From: Alexander Popov Date: Mon, 20 Jun 2022 18:01:15 +0000 (+0300) Subject: Add the page_poison check required for PAGE_POISONING_ZERO X-Git-Tag: v0.6.1~134 X-Git-Url: https://jxself.org/git/?a=commitdiff_plain;h=ff64053dc7e2a79b11ec66a0a60f9b7836366a5b;p=kconfig-hardened-check.git Add the page_poison check required for PAGE_POISONING_ZERO --- diff --git a/kconfig_hardened_check/__init__.py b/kconfig_hardened_check/__init__.py index 620c8e9..5545e86 100644 --- a/kconfig_hardened_check/__init__.py +++ b/kconfig_hardened_check/__init__.py @@ -416,7 +416,8 @@ def add_kconfig_checks(l, arch): l += [OR(KconfigCheck('self_protection', 'kspp', 'INIT_STACK_ALL_ZERO', 'y'), KconfigCheck('self_protection', 'kspp', 'GCC_PLUGIN_STRUCTLEAK_BYREF_ALL', 'y'))] l += [OR(KconfigCheck('self_protection', 'kspp', 'INIT_ON_FREE_DEFAULT_ON', 'y'), - KconfigCheck('self_protection', 'kspp', 'PAGE_POISONING_ZERO', 'y'))] + AND(KconfigCheck('self_protection', 'kspp', 'PAGE_POISONING_ZERO', 'y'), + CmdlineCheck('self_protection', 'kspp', 'page_poison', '1')))] # CONFIG_INIT_ON_FREE_DEFAULT_ON was added in v5.3. # CONFIG_PAGE_POISONING_ZERO was removed in v5.11. # Starting from v5.11 CONFIG_PAGE_POISONING unconditionally checks