diff options
| author | Linus Torvalds <torvalds@woody.linux-foundation.org> | 2008-02-06 13:54:09 -0800 | 
|---|---|---|
| committer | Linus Torvalds <torvalds@woody.linux-foundation.org> | 2008-02-06 13:54:09 -0800 | 
| commit | 3e6bdf473f489664dac4d7511d26c7ac3dfdc748 (patch) | |
| tree | 10cb2e928830b9de8bbc3f6dd47c18c24cd2affa /init | |
| parent | 3d4d4582e5b3f67a68f2cf32fd5b70d8d80f119d (diff) | |
| parent | 58d5d0d8dd52cbca988af24b5692a20b00285543 (diff) | |
Merge git://git.kernel.org/pub/scm/linux/kernel/git/x86/linux-2.6-x86
* git://git.kernel.org/pub/scm/linux/kernel/git/x86/linux-2.6-x86:
  x86: fix deadlock, make pgd_lock irq-safe
  virtio: fix trivial build bug
  x86: fix mttr trimming
  x86: delay CPA self-test and repeat it
  x86: fix 64-bit sections
  generic: add __FINITDATA
  x86: remove suprious ifdefs from pageattr.c
  x86: mark the .rodata section also NX
  x86: fix iret exception recovery on 64-bit
  cpuidle: dubious one-bit signed bitfield in cpuidle.h
  x86: fix sparse warnings in powernow-k8.c
  x86: fix sparse error in traps_32.c
  x86: trivial sparse/checkpatch in quirks.c
  x86 ptrace: disallow null cs/ss
  MAINTAINERS: RDC R-321x SoC maintainer
  brk randomization: introduce CONFIG_COMPAT_BRK
  brk: check the lower bound properly
  x86: remove X2 workaround
  x86: make spurious fault handler aware of large mappings
  x86: make traps on entry code be debuggable in user space, 64-bit
Diffstat (limited to 'init')
| -rw-r--r-- | init/Kconfig | 12 | 
1 files changed, 12 insertions, 0 deletions
| diff --git a/init/Kconfig b/init/Kconfig index 87f50df5889..92b23e25661 100644 --- a/init/Kconfig +++ b/init/Kconfig @@ -541,6 +541,18 @@ config ELF_CORE  	help  	  Enable support for generating core dumps. Disabling saves about 4k. +config COMPAT_BRK +	bool "Disable heap randomization" +	default y +	help +	  Randomizing heap placement makes heap exploits harder, but it +	  also breaks ancient binaries (including anything libc5 based). +	  This option changes the bootup default to heap randomization +	  disabled, and can be overriden runtime by setting +	  /proc/sys/kernel/randomize_va_space to 2. + +	  On non-ancient distros (post-2000 ones) Y is usually a safe choice. +  config BASE_FULL  	default y  	bool "Enable full-sized data structures for core" if EMBEDDED | 
