diff options
| author | Alexander Popov <alex.popov@linux.com> | 2018-08-16 18:17:03 -0400 |
|---|---|---|
| committer | Kees Cook <keescook@chromium.org> | 2018-09-04 13:35:48 -0400 |
| commit | 964c9dff0091893a9a74a88edf984c6da0b779f7 (patch) | |
| tree | 162d45af3ac44401db524294e67e396ddee476f4 /scripts | |
| parent | ed535a2dae1836d15c71e250475952881265d244 (diff) | |
stackleak: Allow runtime disabling of kernel stack erasing
Introduce CONFIG_STACKLEAK_RUNTIME_DISABLE option, which provides
'stack_erasing' sysctl. It can be used in runtime to control kernel
stack erasing for kernels built with CONFIG_GCC_PLUGIN_STACKLEAK.
Suggested-by: Ingo Molnar <mingo@kernel.org>
Signed-off-by: Alexander Popov <alex.popov@linux.com>
Tested-by: Laura Abbott <labbott@redhat.com>
Signed-off-by: Kees Cook <keescook@chromium.org>
Diffstat (limited to 'scripts')
| -rw-r--r-- | scripts/gcc-plugins/Kconfig | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/scripts/gcc-plugins/Kconfig b/scripts/gcc-plugins/Kconfig index b0a015ef5268..0d5c799688f0 100644 --- a/scripts/gcc-plugins/Kconfig +++ b/scripts/gcc-plugins/Kconfig | |||
| @@ -182,4 +182,12 @@ config STACKLEAK_METRICS | |||
| 182 | can be useful for estimating the STACKLEAK performance impact for | 182 | can be useful for estimating the STACKLEAK performance impact for |
| 183 | your workloads. | 183 | your workloads. |
| 184 | 184 | ||
| 185 | config STACKLEAK_RUNTIME_DISABLE | ||
| 186 | bool "Allow runtime disabling of kernel stack erasing" | ||
| 187 | depends on GCC_PLUGIN_STACKLEAK | ||
| 188 | help | ||
| 189 | This option provides 'stack_erasing' sysctl, which can be used in | ||
| 190 | runtime to control kernel stack erasing for kernels built with | ||
| 191 | CONFIG_GCC_PLUGIN_STACKLEAK. | ||
| 192 | |||
| 185 | endif | 193 | endif |