Skip to content
Commit 5c108d4e authored by Stephen Smalley's avatar Stephen Smalley Committed by Paul Moore
Browse files

selinux: randomize layout of key structures 



Randomize the layout of key selinux data structures.
Initially this is applied to the selinux_state, selinux_ss,
policydb, and task_security_struct data structures.

NB To test/use this mechanism, one must install the
necessary build-time dependencies, e.g. gcc-plugin-devel on Fedora,
and enable CONFIG_GCC_PLUGIN_RANDSTRUCT in the kernel configuration.

Signed-off-by: default avatarStephen Smalley <sds@tycho.nsa.gov>
Reviewed-by: default avatarKees Cook <keescook@chromium.org>
[PM: double semi-colon fixed]
Signed-off-by: default avatarPaul Moore <paul@paul-moore.com>
parent 6c5a682e
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment