On 17.02.2017 02:08, Kees Cook wrote:
> On Thu, Feb 16, 2017 at 2:25 PM, Pavel Machek wrote:
>> Hi!
>>
>>>
>>> -config DEBUG_RODATA
>>> +config STRICT_KERNEL_RWX
>>> bool "Make kernel text and rodata read-only" if
>>> ARCH_OPTIONAL_KERNEL_RWX
>>> depends on ARCH_HAS_STRICT_KERNEL_RWX
On 19.01.2017 12:33, Heiko Carstens wrote:
> On Thu, Jan 19, 2017 at 10:56:46AM +, Mark Rutland wrote:
>>> +config HARDENED_PAGE_MAPPINGS
>>> + bool "Mark kernel mappings with stricter permissions (RO/W^X)"
>>> + default y
>>> + depends on ARCH_HAS_HARDENED_MAPPINGS
>>> + help
>>> +
