[PATCH 3/3] Revert "hardening: Disable GCC randstruct for COMPILE_TEST"

From: Kees Cook
Date: Sat Apr 26 2025 - 21:39:03 EST

Next message: Kees Cook: "[PATCH 1/3] randstruct: gcc-plugin: Remove bogus void member"
Previous message: Kees Cook: "[PATCH 0/3] randstruct: gcc-plugin: Remove bogus void member"
In reply to: Kees Cook: "[PATCH 0/3] randstruct: gcc-plugin: Remove bogus void member"
Next in thread: Kees Cook: "[PATCH 1/3] randstruct: gcc-plugin: Remove bogus void member"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This reverts commit f5c68a4e84f9feca3be578199ec648b676db2030.

It is again possible to build "allmodconfig" with the randstruct GCC
plugin, so enable it for COMPILE_TEST to catch future bugs.

Signed-off-by: Kees Cook <kees@xxxxxxxxxx>
---
security/Kconfig.hardening | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/security/Kconfig.hardening b/security/Kconfig.hardening
index 3fe9d7b945c4..c17366ce8224 100644
--- a/security/Kconfig.hardening
+++ b/security/Kconfig.hardening
@@ -344,7 +344,7 @@ config CC_HAS_RANDSTRUCT

choice
prompt "Randomize layout of sensitive kernel structures"
- default RANDSTRUCT_FULL if COMPILE_TEST && CC_HAS_RANDSTRUCT
+ default RANDSTRUCT_FULL if COMPILE_TEST && (GCC_PLUGINS || CC_HAS_RANDSTRUCT)
default RANDSTRUCT_NONE
help
If you enable this, the layouts of structures that are entirely
--
2.34.1

Next message: Kees Cook: "[PATCH 1/3] randstruct: gcc-plugin: Remove bogus void member"
Previous message: Kees Cook: "[PATCH 0/3] randstruct: gcc-plugin: Remove bogus void member"
In reply to: Kees Cook: "[PATCH 0/3] randstruct: gcc-plugin: Remove bogus void member"
Next in thread: Kees Cook: "[PATCH 1/3] randstruct: gcc-plugin: Remove bogus void member"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]