From 742a3b8924f40623ac3831dce834dcfb45b92ade Mon Sep 17 00:00:00 2001
From: Hal Emmerich <hal@halemmerich.com>
Date: Mon, 18 Nov 2019 22:24:27 -0600
Subject: [PATCH] Make kernel wipe memory on free

This helps against cold boot attacks when a proper shutdown is done.
---
 resources/BuildResources/config | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/resources/BuildResources/config b/resources/BuildResources/config
index 223c4a9..6ffe6dd 100644
--- a/resources/BuildResources/config
+++ b/resources/BuildResources/config
@@ -5431,7 +5431,9 @@ CONFIG_DEBUG_MISC=y
 # CONFIG_PAGE_EXTENSION is not set
 # CONFIG_DEBUG_PAGEALLOC is not set
 # CONFIG_PAGE_OWNER is not set
-# CONFIG_PAGE_POISONING is not set
+CONFIG_PAGE_POISONING=y
+CONFIG_PAGE_POISONING_NO_SANITY=y
+CONFIG_PAGE_POISONING_ZERO=y
 # CONFIG_DEBUG_PAGE_REF is not set
 # CONFIG_DEBUG_RODATA_TEST is not set
 # CONFIG_DEBUG_OBJECTS is not set