FS#72597 - [linux] use CONFIG_ZERO_CALL_USED_REGS
Attached to Project:
Arch Linux
Opened by T.J. Townsend (blakkheim) - Sunday, 31 October 2021, 22:00 GMT
Last edited by Andreas Radke (AndyRTR) - Monday, 07 February 2022, 20:08 GMT
Opened by T.J. Townsend (blakkheim) - Sunday, 31 October 2021, 22:00 GMT
Last edited by Andreas Radke (AndyRTR) - Monday, 07 February 2022, 20:08 GMT
|
Details
Description:
Linux 5.15 introduces the CONFIG_ZERO_CALL_USED_REGS build option, which is documented in the link below. It provides a security benefit that (as far as I can tell) can't be enabled at runtime by the user. I'm therefore suggesting we enable it by default in the Arch kernel during the 5.15 update. Additional info: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a82adfd5c7cb4b8bb37ef439aed954f9972bb618 |
This task depends upon
Closed by Andreas Radke (AndyRTR)
Monday, 07 February 2022, 20:08 GMT
Reason for closing: Fixed
Additional comments about closing: disabled in trunk for future builds to all kernels
Monday, 07 February 2022, 20:08 GMT
Reason for closing: Fixed
Additional comments about closing: disabled in trunk for future builds to all kernels
Correct me if I'm wrong, but I think this can be closed now. Thanks!