From 3a9ff2db95fdc396927a210297fe2be30d1c8a98 Mon Sep 17 00:00:00 2001
From: Robert Schwebel <r.schwebel@pengutronix.de>
Date: Fri, 21 Jul 2017 18:50:13 +0200
Subject: platform-v7a: kernel: activate hardened user copy

As suggested by "reason", activate the kernel option to protect against
obviously wrong memory regions when copying memory to/from the kernel.

Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
---
 configs/platform-v7a/kernelconfig | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'configs/platform-v7a/kernelconfig')

diff --git a/configs/platform-v7a/kernelconfig b/configs/platform-v7a/kernelconfig
index 66172d9..3959cb7 100644
--- a/configs/platform-v7a/kernelconfig
+++ b/configs/platform-v7a/kernelconfig
@@ -3130,7 +3130,8 @@ CONFIG_SECURITY_DMESG_RESTRICT=y
 # CONFIG_SECURITY is not set
 # CONFIG_SECURITYFS is not set
 CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
-# CONFIG_HARDENED_USERCOPY is not set
+CONFIG_HARDENED_USERCOPY=y
+# CONFIG_HARDENED_USERCOPY_PAGESPAN is not set
 # CONFIG_STATIC_USERMODEHELPER is not set
 CONFIG_DEFAULT_SECURITY_DAC=y
 CONFIG_DEFAULT_SECURITY=""
-- 
cgit v1.2.3