diff options
| author | Franz Pletz <fpletz@fnordicwalking.de> | 2018-01-03 07:10:24 +0100 |
|---|---|---|
| committer | Franz Pletz <fpletz@fnordicwalking.de> | 2018-01-04 05:02:39 +0100 |
| commit | ccb0ba56ef190205a39d59743ef7bd6936da43a0 (patch) | |
| tree | 13c0262e5521e94e19d6183b2937e530cd709ff4 | |
| parent | f8fd0b7a5f1dfdc401df41ba2ccac4e56a220c89 (diff) | |
| download | nixlib-ccb0ba56ef190205a39d59743ef7bd6936da43a0.tar nixlib-ccb0ba56ef190205a39d59743ef7bd6936da43a0.tar.gz nixlib-ccb0ba56ef190205a39d59743ef7bd6936da43a0.tar.bz2 nixlib-ccb0ba56ef190205a39d59743ef7bd6936da43a0.tar.lz nixlib-ccb0ba56ef190205a39d59743ef7bd6936da43a0.tar.xz nixlib-ccb0ba56ef190205a39d59743ef7bd6936da43a0.tar.zst nixlib-ccb0ba56ef190205a39d59743ef7bd6936da43a0.zip | |
linux_hardended: enable gcc latent entropy plugin
| -rw-r--r-- | pkgs/os-specific/linux/kernel/hardened-config.nix | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/pkgs/os-specific/linux/kernel/hardened-config.nix b/pkgs/os-specific/linux/kernel/hardened-config.nix index a859a3cefbd4..b7959f9d3599 100644 --- a/pkgs/os-specific/linux/kernel/hardened-config.nix +++ b/pkgs/os-specific/linux/kernel/hardened-config.nix @@ -97,6 +97,9 @@ PANIC_TIMEOUT -1 GCC_PLUGINS y # Enable gcc plugin options +# Gather additional entropy at boot time for systems that may not have appropriate entropy sources. +GCC_PLUGIN_LATENT_ENTROPY y + ${optionalString (versionAtLeast version "4.11") '' GCC_PLUGIN_STRUCTLEAK y # A port of the PaX structleak plugin ''} |