Re: [PATCH] net: randomize layout of struct net_device

From: Kees Cook
Date: Fri Jun 06 2025 - 15:46:30 EST

Next message: kernel test robot: "Re: [PATCH v8 4/9] drm/ttm: Add ttm_bo_kmap_try_from_panic()"
Previous message: Marco Bonelli: "Re: Broken 32-bit riscv debug build with ZSTD and FTRACE"
In reply to: Andrew Lunn: "Re: [PATCH] net: randomize layout of struct net_device"
Next in thread: Greg KH: "Re: [PATCH] net: randomize layout of struct net_device"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On June 6, 2025 8:42:45 AM PDT, Eric Dumazet <edumazet@xxxxxxxxxx> wrote:
>Most distros use CONFIG_RANDSTRUCT_NONE=y

That is true. But distros don't strictly define our code base. :)

> I do not think __randomize_layout has a future.

It will remain an actively supported feature -- many high security systems (that build their own kernels) use it, along with other features where they have no problem trading performance for security.

-Kees

--
Kees Cook

Next message: kernel test robot: "Re: [PATCH v8 4/9] drm/ttm: Add ttm_bo_kmap_try_from_panic()"
Previous message: Marco Bonelli: "Re: Broken 32-bit riscv debug build with ZSTD and FTRACE"
In reply to: Andrew Lunn: "Re: [PATCH] net: randomize layout of struct net_device"
Next in thread: Greg KH: "Re: [PATCH] net: randomize layout of struct net_device"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]