[kernel-hardening] [PATCH] powerpc/kernel: Disable the latent entropy plugin unconditionally
Kees Cook
keescook at chromium.org
Wed Nov 16 09:41:38 AEDT 2016
On Tue, Nov 1, 2016 at 10:06 PM, Andrew Donnellan
<andrew.donnellan at au1.ibm.com> wrote:
> On 27/06/16 01:34, Emese Revfy wrote:
>>
>>
>> Reported-by: PaX Team <pageexec at freemail.hu>
>> Signed-off-by: Emese Revfy <re.emese at gmail.com>
>> ---
>> arch/powerpc/kernel/Makefile | 3 ++-
>> 1 file changed, 2 insertions(+), 1 deletion(-)
>>
>> diff --git a/arch/powerpc/kernel/Makefile b/arch/powerpc/kernel/Makefile
>> index 01935b8..e9ef44f 100644
>> --- a/arch/powerpc/kernel/Makefile
>> +++ b/arch/powerpc/kernel/Makefile
>> @@ -14,11 +14,12 @@ CFLAGS_prom_init.o += -fPIC
>> CFLAGS_btext.o += -fPIC
>> endif
>>
>> -ifdef CONFIG_FUNCTION_TRACER
>> CFLAGS_cputable.o += $(DISABLE_LATENT_ENTROPY_PLUGIN)
>> CFLAGS_init.o += $(DISABLE_LATENT_ENTROPY_PLUGIN)
>
>
> I think you meant prom_init.o...
>
> Additionally, DISABLE_LATENT_ENTROPY_PLUGIN is conditioned on
> CONFIG_PAX_LATENT_ENTROPY rather than CONFIG_GCC_PLUGIN_LATENT_ENTROPY, so
> it doesn't get exported correctly.
>
> Will submit fixes along with patches to enable plugins on powerpc once I get
> that sorted.
>
> (In future please remember to cc linuxppc-dev.)
Just checking in: did these patches materialize? I'd love to see
plugins working on v4.10 for ppc.
-Kees
--
Kees Cook
Nexus Security
More information about the Linuxppc-dev
mailing list