Drop ZERO_CALL_USED_REGS in favour of backward-edge CFI

author Alexander Popov <alex.popov@linux.com>

Wed, 4 Oct 2023 18:21:21 +0000 (21:21 +0300)

committer Alexander Popov <alex.popov@linux.com>

Wed, 4 Oct 2023 18:21:21 +0000 (21:21 +0300)
author Alexander Popov <alex.popov@linux.com>
Wed, 4 Oct 2023 18:21:21 +0000 (21:21 +0300)
committer Alexander Popov <alex.popov@linux.com>
Wed, 4 Oct 2023 18:21:21 +0000 (21:21 +0300)
diff --git a/kernel_hardening_checker/checks.py b/kernel_hardening_checker/checks.py

index de63c3e44ff3ac6de575ac45f07028498345dc75..e99d6a8b6198e790caee9192866930d84265006d 100644 (file)
--- a/kernel_hardening_checker/checks.py
+++ b/kernel_hardening_checker/checks.py
@@ -118,7 +118,6 @@ def add_kconfig_checks(l, arch):
      l += [KconfigCheck('self_protection', 'kspp', 'DEBUG_NOTIFIERS', 'y')]
      l += [KconfigCheck('self_protection', 'kspp', 'INIT_ON_ALLOC_DEFAULT_ON', 'y')]
      l += [KconfigCheck('self_protection', 'kspp', 'KFENCE', 'y')]
-    l += [KconfigCheck('self_protection', 'kspp', 'ZERO_CALL_USED_REGS', 'y')]
      l += [KconfigCheck('self_protection', 'kspp', 'HW_RANDOM_TPM', 'y')]
      l += [KconfigCheck('self_protection', 'kspp', 'STATIC_USERMODEHELPER', 'y')] # needs userspace support
      randstruct_is_set = OR(KconfigCheck('self_protection', 'kspp', 'RANDSTRUCT_FULL', 'y'),
author	Alexander Popov <alex.popov@linux.com>
	Wed, 4 Oct 2023 18:21:21 +0000 (21:21 +0300)
committer	Alexander Popov <alex.popov@linux.com>
	Wed, 4 Oct 2023 18:21:21 +0000 (21:21 +0300)