On Fri, Jun 13, 2014 at 4:25 PM, Rafael J. Wysocki <rjw@xxxxxxxxxxxxx> wrote: > On Friday, June 13, 2014 01:30:34 PM Kees Cook wrote: >> Distros want to be able to offer CONFIG_RANDOMIZE_BASE as well as >> CONFIG_HIBERNATION in a single kernel. Instead of making kASLR depend on >> !HIBERNATION at compile time, allow kaslr to be selectable at boot time >> (via "kaslr" kernel command line), which will disable hibernation in the >> kernel. In this way the end user can choose which feature they want more >> with hibernation continuing to stay enabled by default (no surprises). >> >> This also has the benefit of being able to entirely disable hibernation >> from the kernel command line, regardless of kASLR, which is a separately >> desired feature as well. >> >> v3: >> - switch from EINVAL to EPERM (pavel, jwboyer) >> v2: >> - rework using kernel command line instead of hibernation_mode (rjw) > > That looks kind of OK. > > Do you want me to push this through my tree? Thanks, yes, that would be great. -Kees -- Kees Cook Chrome OS Security -- To unsubscribe from this list: send the line "unsubscribe linux-doc" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
