diff options
| author | Joachim Fasting <joachifm@fastmail.fm> | 2017-05-02 16:21:26 +0200 |
|---|---|---|
| committer | Joachim Fasting <joachifm@fastmail.fm> | 2017-05-09 01:38:24 +0200 |
| commit | 1816e2b96084f982a0536f40953383d42c082b8d (patch) | |
| tree | ebda44156233fa746b7419a9124c037e5e537a05 /pkgs/os-specific | |
| parent | a7ecdffc281f847e8addabee216a1b424998b130 (diff) | |
| download | nixlib-1816e2b96084f982a0536f40953383d42c082b8d.tar nixlib-1816e2b96084f982a0536f40953383d42c082b8d.tar.gz nixlib-1816e2b96084f982a0536f40953383d42c082b8d.tar.bz2 nixlib-1816e2b96084f982a0536f40953383d42c082b8d.tar.lz nixlib-1816e2b96084f982a0536f40953383d42c082b8d.tar.xz nixlib-1816e2b96084f982a0536f40953383d42c082b8d.tar.zst nixlib-1816e2b96084f982a0536f40953383d42c082b8d.zip | |
linux_hardened: BUG on struct validation failure
Diffstat (limited to 'pkgs/os-specific')
| -rw-r--r-- | pkgs/os-specific/linux/kernel/hardened-config.nix | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/pkgs/os-specific/linux/kernel/hardened-config.nix b/pkgs/os-specific/linux/kernel/hardened-config.nix index 78fb1e368be7..bff15b05fd94 100644 --- a/pkgs/os-specific/linux/kernel/hardened-config.nix +++ b/pkgs/os-specific/linux/kernel/hardened-config.nix @@ -17,6 +17,10 @@ GCC_PLUGINS y # Enable gcc plugin options DEBUG_WX y # A one-time check for W+X mappings at boot; doesn't do anything beyond printing a warning +${optionalString (versionAtLeast version "4.10") '' + BUG_ON_DATA_CORRUPTION y # BUG if kernel struct validation detects corruption +''} + # Additional validation of commonly targetted structures DEBUG_CREDENTIALS y DEBUG_NOTIFIERS y |