jxself.org public git repositories - kconfig-hardened-check.git/search

projects / kconfig-hardened-check.git / search

2022-03-13	Alexander Popov	Add CONFIG_SLS vs CVE-2021-26341 in Straight-Line-Speculation	commit \| commitdiff \| tree
2022-03-13	Alexander Popov	Add the comment that l1d_flush is a part of the l1tf...	commit \| commitdiff \| tree
2022-03-13	Alexander Popov	Add BPF_UNPRIV_DEFAULT_OFF to cut_attack_surface	commit \| commitdiff \| tree
2022-03-05	Alexander Popov	Use the option type instead of calling hasattr()	commit \| commitdiff \| tree
2022-03-05	Alexander Popov	Merge branch 'refactoring'	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Introduce the json_dump() class method	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Improve 'type' for ComplexOptCheck and PresenceCheck...	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Make populate_with_data() aware of data type	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Add 'type' for PresenceCheck and VersionCheck	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Rename VerCheck to VersionCheck	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Add more ComplexOptCheck validation	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Improve print_unknown_options()	commit \| commitdiff \| tree
2022-02-14	Alexander Popov	Remove 'CONFIG_' hardcoding	commit \| commitdiff \| tree
2022-02-11	Alexander Popov	Merge branch 'refactoring'	commit \| commitdiff \| tree
2022-02-11	Alexander Popov	Refactor the OR logic code	commit \| commitdiff \| tree
2022-02-11	Alexander Popov	Rename config to kconfig where needed (part II)	commit \| commitdiff \| tree
2022-01-22	Alexander Popov	Extract populate_with_data() from perform_checks()	commit \| commitdiff \| tree
2022-01-22	Alexander Popov	Rename config to kconfig where needed	commit \| commitdiff \| tree
2022-01-22	Alexander Popov	Print the type of a check in the json mode	commit \| commitdiff \| tree
2022-01-22	Alexander Popov	ComplexOptCheck type has the type of the first opt...	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Update the example output in the README (yes, now I...	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Do more output tuning	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Update the example output in the README	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Add check type	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Update the example output in the README	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Print compactly	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Introduce KconfigCheck class	commit \| commitdiff \| tree
2022-01-21	Alexander Popov	Fix TRIM_UNUSED_KSYMS check	commit \| commitdiff \| tree
2021-12-24	Alexander Popov	Add l1d_flush (for future reference)	commit \| commitdiff \| tree
2021-12-05	Alexander Popov	Add ARM64_PTR_AUTH_KERNEL extracted from ARM64_PTR_AUTH	commit \| commitdiff \| tree
2021-11-21	Alexander Popov	Document the output modes specified by the `-m` parameter	commit \| commitdiff \| tree
2021-11-21	Alexander Popov	TODO: RISC-V	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Update the README (a lot of new checks appeared)	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Keep the old X86_PTDUMP check as a backup	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Simplify the check about PTDUMP_DEBUGFS (I was correct)	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Add more checks from grsecurity for cutting attack...	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Fix the 'decision' field of the IO_URING check	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Add more checks from grsecurity for cutting attack...	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Fix the 'decision' field of the KPROBES check	commit \| commitdiff \| tree
2021-11-09	Alexander Popov	Add the comment	commit \| commitdiff \| tree
2021-09-23	Alexander Popov	Improve the README	commit \| commitdiff \| tree
2021-09-23	Alexander Popov	Get a bit more coverage	commit \| commitdiff \| tree
2021-09-23	Alexander Popov	Update the README	commit \| commitdiff \| tree
2021-09-22	Alexander Popov	Move 'self_protection' & 'maintainer' higher	commit \| commitdiff \| tree
2021-09-21	Alexander Popov	Add HARDENED_USERCOPY_PAGESPAN check from KSPP	commit \| commitdiff \| tree
2021-09-21	Alexander Popov	Add comments about the maintainer recommendations	commit \| commitdiff \| tree
2021-09-21	Alexander Popov	Fix UBSAN_BOUNDS recommendations	commit \| commitdiff \| tree
2021-09-21	Alexander Popov	RANDOMIZE_KSTACK_OFFSET_DEFAULT is recommended by KSPP	commit \| commitdiff \| tree
2021-09-16	Alexander Popov	Update the KSPP recommendations	commit \| commitdiff \| tree
2021-09-16	Alexander Popov	Add defconfigs for Linux v5.14	commit \| commitdiff \| tree
2021-09-10	Alexander Popov	Merge pull request #54 from evdenis/master	commit \| commitdiff \| tree
2021-09-10	Alexander Popov	Add RANDOMIZE_KSTACK_OFFSET_DEFAULT	commit \| commitdiff \| tree
2021-08-29	Alexander Popov	Add CFI_CLANG	commit \| commitdiff \| tree
2021-08-29	Alexander Popov	Add ARM64_EPAN	commit \| commitdiff \| tree
2021-08-20	Alexander Popov	Merge pull request #51 from Hacks4Snacks/master	commit \| commitdiff \| tree
2021-08-14	Alexander Popov	Add hardware tag-based KASAN with arm64 Memory Tagging...	commit \| commitdiff \| tree
2021-08-14	Alexander Popov	Add the command line parameters that should NOT be set	commit \| commitdiff \| tree
2021-08-08	Alexander Popov	Document the changes of vm.unprivileged_userfaultfd...	commit \| commitdiff \| tree
2021-08-08	Alexander Popov	Add the news about PAGE_POISONING	commit \| commitdiff \| tree
2021-07-02	Alexander Popov	Improve wording	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Update the README.	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Fix pylint warning	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Remember that SHADOW_CALL_STACK depends on clang	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	STACKPROTECTOR_PER_TASK is also available for ARM64	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	INTEL_IOMMU_SVM is available only for X86_64	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Reorder arch checks	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	SECURITY_DMESG_RESTRICT is recommended by KSPP now	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Think about kptr_restrict later (KSPP recommends to...	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Mention that nosmt is slow	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	More info on init_on_free and init_on_alloc	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	SLUB_DEBUG_ON is very slow, leave it for the kernel...	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Update KSPP recommendations	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	Add defconfigs for v5.10	commit \| commitdiff \| tree
2021-06-19	Alexander Popov	HARDEN_BRANCH_PREDICTOR for ARM64 is enabled by default...	commit \| commitdiff \| tree
2021-06-18	Alexander Popov	Add ARM64_MTE for userspace	commit \| commitdiff \| tree
2021-06-18	Alexander Popov	Maybe SHADOW_CALL_STACK should be alternative to STACKPROTEC...	commit \| commitdiff \| tree
2021-06-18	Alexander Popov	Save 'debugfs=no-mount' for future	commit \| commitdiff \| tree
2020-10-30	Alexander Popov	Update the README.	commit \| commitdiff \| tree
2020-10-30	Alexander Popov	Fix indentation (thanks to pylint)	commit \| commitdiff \| tree
2020-10-29	Alexander Popov	Add a Q&A about spectre-meltdown-checker maintained...	commit \| commitdiff \| tree
2020-10-23	Alexander Popov	INIT_STACK_ALL -> INIT_STACK_ALL_ZERO (was renamed)	commit \| commitdiff \| tree
2020-10-23	Alexander Popov	Add SHADOW_CALL_STACK for ARM64	commit \| commitdiff \| tree
2020-10-22	Alexander Popov	Add the recommendation about TRIM_UNUSED_KSYMS	commit \| commitdiff \| tree
2020-10-22	Alexander Popov	Add ARM64_BTI_KERNEL	commit \| commitdiff \| tree
2020-10-22	Alexander Popov	Add the recommendation about UBSAN_BOUNDS	commit \| commitdiff \| tree
2020-10-22	Alexander Popov	PAGE_POISONING -> PAGE_POISONING_ZERO	commit \| commitdiff \| tree
2020-10-22	Alexander Popov	Improve AND check reports	commit \| commitdiff \| tree
2020-10-22	Alexander Popov	Improve HARDEN_EL2_VECTORS check	commit \| commitdiff \| tree
2020-10-22	Alexander Popov	Merge remote-tracking branch 'pgils/el2_vectors'	commit \| commitdiff \| tree
2020-10-21	Alexander Popov	Add nested ComplexOptChecks support	commit \| commitdiff \| tree
2020-10-16	Alexander Popov	Add TODO about SLUB_DEBUG_ON	commit \| commitdiff \| tree
2020-10-16	Alexander Popov	Add CLIP OS recommendation about EFI_CUSTOM_SSDT_OVERLAYS	commit \| commitdiff \| tree
2020-10-16	Alexander Popov	Disabling ACPI_TABLE_UPGRADE is now recommended by...	commit \| commitdiff \| tree
2020-10-16	Alexander Popov	Withdraw my recommendation about BPF_JIT	commit \| commitdiff \| tree
2020-10-14	Alexander Popov	Use cross compiler to build defconfigs	commit \| commitdiff \| tree
2020-10-14	Alexander Popov	Add defconfigs for Linux kernel v5.9	commit \| commitdiff \| tree
2020-07-15	Alexander Popov	Update the README	commit \| commitdiff \| tree
2020-07-15	Alexander Popov	Fix relevant pylint warnings	commit \| commitdiff \| tree
2020-07-15	Alexander Popov	Fix 'decision' priority order ('lockdown' vs 'clipos...	commit \| commitdiff \| tree
2020-07-15	Alexander Popov	Add CLIP OS recommendations about CONFIG_IO_URING and...	commit \| commitdiff \| tree
next

kconfig-hardened-check

RSS Atom