]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4c56d9f) | patch
configs/hardening: Enable CONFIG_INIT_ON_FREE_DEFAULT_ON
authorKees Cook <kees@kernel.org>
Thu, 17 Jul 2025 23:25:18 +0000 (16:25 -0700)
committerKees Cook <kees@kernel.org>
Tue, 22 Jul 2025 04:41:57 +0000 (21:41 -0700)
commit437641a72d0a675242ae3e649a30b4c51b3ad450
tree840f26059125b322b5e852e6d6e6296e0a70186ftree
parent4c56d9f7e75eb2a137584f708fa262d7e8c8a2d8commit | diff
configs/hardening: Enable CONFIG_INIT_ON_FREE_DEFAULT_ON

To reduce stale data lifetimes, enable CONFIG_INIT_ON_FREE_DEFAULT_ON as
well. This matches the addition of CONFIG_STACKLEAK=y, which is doing
similar for stack memory.

Link: https://lore.kernel.org/r/20250717232519.2984886-13-kees@kernel.org
Signed-off-by: Kees Cook <kees@kernel.org>
kernel/configs/hardening.config diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git