diff options
author | Franz Pletz <fpletz@fnordicwalking.de> | 2018-01-03 07:10:24 +0100 |
---|---|---|
committer | Franz Pletz <fpletz@fnordicwalking.de> | 2018-01-04 05:02:39 +0100 |
commit | ccb0ba56ef190205a39d59743ef7bd6936da43a0 (patch) | |
tree | 13c0262e5521e94e19d6183b2937e530cd709ff4 | |
parent | f8fd0b7a5f1dfdc401df41ba2ccac4e56a220c89 (diff) |
linux_hardended: enable gcc latent entropy plugin
-rw-r--r-- | pkgs/os-specific/linux/kernel/hardened-config.nix | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/pkgs/os-specific/linux/kernel/hardened-config.nix b/pkgs/os-specific/linux/kernel/hardened-config.nix index a859a3cefbd48..b7959f9d35992 100644 --- a/pkgs/os-specific/linux/kernel/hardened-config.nix +++ b/pkgs/os-specific/linux/kernel/hardened-config.nix @@ -97,6 +97,9 @@ PANIC_TIMEOUT -1 GCC_PLUGINS y # Enable gcc plugin options +# Gather additional entropy at boot time for systems that may not have appropriate entropy sources. +GCC_PLUGIN_LATENT_ENTROPY y + ${optionalString (versionAtLeast version "4.11") '' GCC_PLUGIN_STRUCTLEAK y # A port of the PaX structleak plugin ''} |