Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-23 Thread Masahiro Yamada
On Wed, Apr 24, 2019 at 4:36 AM Kees Cook wrote: > > On Thu, Apr 11, 2019 at 6:39 PM Masahiro Yamada > wrote: > > > > On Fri, Apr 12, 2019 at 3:01 AM Kees Cook wrote: > > > > > > Right now kernel hardening options are scattered around various Kconfig > > > files. This can be a central place to

Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-23 Thread Kees Cook
On Thu, Apr 11, 2019 at 6:39 PM Masahiro Yamada wrote: > > On Fri, Apr 12, 2019 at 3:01 AM Kees Cook wrote: > > > > Right now kernel hardening options are scattered around various Kconfig > > files. This can be a central place to collect these kinds of options > > going forward. This is

Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-19 Thread Alexander Popov
On 16.04.2019 16:56, Kees Cook wrote: > On Tue, Apr 16, 2019 at 8:55 AM Alexander Popov wrote: >> >> On 16.04.2019 7:02, Kees Cook wrote: >>> On Mon, Apr 15, 2019 at 11:44 AM Alexander Popov >>> wrote: What do you think about some separator between memory initialization options

Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-16 Thread Kees Cook
On Tue, Apr 16, 2019 at 8:55 AM Alexander Popov wrote: > > On 16.04.2019 7:02, Kees Cook wrote: > > On Mon, Apr 15, 2019 at 11:44 AM Alexander Popov > > wrote: > >> > >> What do you think about some separator between memory initialization > >> options and > >> CONFIG_CRYPTO? > > > > This was

Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-16 Thread Alexander Popov
On 16.04.2019 7:02, Kees Cook wrote: > On Mon, Apr 15, 2019 at 11:44 AM Alexander Popov wrote: >> >> What do you think about some separator between memory initialization options >> and >> CONFIG_CRYPTO? > > This was true before too Hm, yes, it's a generic behavior - there is no any separator

Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-15 Thread Kees Cook
On Mon, Apr 15, 2019 at 11:44 AM Alexander Popov wrote: > > On 11.04.2019 21:01, Kees Cook wrote: > > Right now kernel hardening options are scattered around various Kconfig > > files. This can be a central place to collect these kinds of options > > going forward. This is initially populated

Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-15 Thread Alexander Popov
On 11.04.2019 21:01, Kees Cook wrote: > Right now kernel hardening options are scattered around various Kconfig > files. This can be a central place to collect these kinds of options > going forward. This is initially populated with the memory initialization > options from the gcc-plugins. > >

Re: [PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-11 Thread Masahiro Yamada
On Fri, Apr 12, 2019 at 3:01 AM Kees Cook wrote: > > Right now kernel hardening options are scattered around various Kconfig > files. This can be a central place to collect these kinds of options > going forward. This is initially populated with the memory initialization > options from the

[PATCH v2 1/3] security: Create "kernel hardening" config area

2019-04-11 Thread Kees Cook
Right now kernel hardening options are scattered around various Kconfig files. This can be a central place to collect these kinds of options going forward. This is initially populated with the memory initialization options from the gcc-plugins. Signed-off-by: Kees Cook ---