Kees Cook (old account)
-
For folks building systems with a more paranoid #Linux #kernel, do you use any "slub_debug" features beyond "slub_debug=ZF" (redzoning and verification) for security flaw #mitigations ?
e.g. "slub_debug=P" has been superseded by "init_on_alloc=1 init_on_free=1"...
The flags are listed here:
https://docs.kernel.org/mm/slub.html -
Things get really fun with treewide Linux kernel changes when you trip over imported code from external projects. Cleaning up fake flexible arrays continues in the ACPICA project:
https://github.com/acpica/acpica/pull/813