projects
/
kconfig-hardened-check.git
/ shortlog
commit
grep
author
committer
pickaxe
?
search:
re
summary
| shortlog |
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
kconfig-hardened-check.git
2023-03-06
Alexander Popov
backport: Fix the bug in OptCheck.check() introduced...
v0.6.1-fixes
v0.6.1
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-22
Alexander Popov
Update the README
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-22
Alexander Popov
Fix the 'decision' for the slub_merge check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-22
Alexander Popov
Fix the pylint R1714 issues
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Add the check for the 'kvm.nx_huge_pages' cmdline parameter
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Add the check for the slub_merge cmdline parameter
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Rename the file with the KSPP cmdline recommendations...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Clean up the comments
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Add the check for the iommu cmdline option
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Add the KSPP cmdline recommendations for x86_64
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Include parsed_cmdline_options in the print_unknown_opt...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-21
Alexander Popov
Rename the files with the KSPP recommendations
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-19
Alexander Popov
Drop get-nix-kconfig.py (`nix-build get-nixos-kconfig...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-19
Alexander Popov
Add the NixOS kernel configs
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-19
Alexander Popov
Merge branch 'from-o8opi-2'
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-15
Alexander Popov
Update the VMAP_STACK check: it is available for ARM
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-15
Alexander Popov
Fix the arch condition for the SCHED_CORE check (II)
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-14
Alexander Popov
Update the KSPP recommendations
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-14
Alexander Popov
Fix the IOMMU_DEFAULT_DMA_STRICT check: it is in defcon...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-14
Alexander Popov
Add the COMPAT and X86_X32_ABI checks
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-14
Alexander Popov
Fix the WERROR check: it is in defconfig for X86_64...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-14
Alexander Popov
Fix the DEBUG_WX check: it is in defconfig for X86_64...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2023-01-13
Alexander Popov
Add defconfigs for Linux v6.1
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-29
o8opi
add get-nixos-kconfig nix script
77/head
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-26
Alexander Popov
Add the repository mirrors
64/head
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-25
Alexander Popov
Backup the pull requests and issues into a Markdown...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-16
Alexander Popov
Remove the AIO check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Remember about the nosmt sysfs control file
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Drop the comment about mitigations of CPU vulnerabilities
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Save the list of disabled mitigations of CPU vulnerabil...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Add the nospectre_bhb check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Add the kpti check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Compare against '0' in the 'is not off' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Add the tsx check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Change the 'decision' of X86_INTEL_TSX_MODE_OFF check...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Add the nomte check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Add the nopauth check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-10
Alexander Popov
Add the nobti check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-09
Alexander Popov
Add the sysrq_always_enabled check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-09
Alexander Popov
Add the ssbd check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-08
Alexander Popov
Avoid the YAML parsing mistake
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-08
Alexander Popov
Fix `python-version` in the GitHub Actions
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-12-08
Alexander Popov
Reorder some checks, no functional changes
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the srbds check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the retbleed check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the mmio_stale_data check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the tsx_async_abort check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the mds check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the l1tf check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the spectre_v2_user check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Do refactoring in normalize_cmdline_options()
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the spec_store_bypass_disable check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Add the spectre_v2 check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-17
Alexander Popov
Introduce the 'is present' check instead of expected...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-11
Alexander Popov
Add the 'mitigations' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-09
Alexander Popov
Add the nosmt check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-09
Alexander Popov
Add a special 'desired val' -- 'is not off'
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-09
Alexander Popov
Improve the result descriptions
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-11-08
Alexander Popov
Add assertions to check arguments of the Class constructors
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-23
Alexander Popov
Update the README
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-23
Alexander Popov
Add the ARM64_E0PD check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-23
Alexander Popov
Fix the SCHED_CORE check: it's now available for ARM64...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-23
Alexander Popov
Update the self-protection checks adopted by KSPP ...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-22
Alexander Popov
Update the self-protection checks adopted by KSPP ...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-22
Alexander Popov
Update the self-protection checks adopted by KSPP ...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-22
Alexander Popov
Update the KSPP recommendations again
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-13
Alexander Popov
Update the self-protection checks adopted by KSPP ...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-13
Alexander Popov
Update the self-protection checks adopted by KSPP ...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-13
Alexander Popov
Update the HW_RANDOM_TPM check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-13
Alexander Popov
Update the UBSAN checks according to the KSPP recommend...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-13
Alexander Popov
Update the security policy checks adopted by KSPP
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-13
Alexander Popov
Update the KSPP recommendations
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-12
Alexander Popov
Improve the README
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Update the README
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Drop some of my security policy recommendations
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Check SECURITY_SELINUX_DEVELOP (recommended by Clip OS)
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Check SECURITY_SELINUX_BOOTPARAM (recommended by Clip OS)
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Improve the HW_RANDOM_TPM check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Check COREDUMP (recommended by Clip OS)
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Check CONFIG_HW_RANDOM_TPM (recommended by Clip OS)
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Check X86_MCE, X86_MCE_INTEL, X86_MCE_AMD (recommended...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-09
Alexander Popov
Improve the README
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-07
Alexander Popov
Update the README
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Also check 'nospectre_v2' with 'spectre_v2'
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Change the reason for the 'nopti' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Change the reason for the 'nokaslr' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Add the 'spectre_v2' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Add the 'nospectre_v2' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Change the reason for the 'nosmep' and 'nosmap' checks
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Add the 'nospectre_v1' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-10-02
Alexander Popov
Add the 'nopti' check
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-24
Alexander Popov
Add the comments: CC_IS_GCC and CC_IS_CLANG exist since...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-24
Alexander Popov
Add the UBSAN_LOCAL_BOUNDS check for Clang build
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-18
Alexander Popov
Update the links to AOSP and GKI
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-02
Alexander Popov
Update the README
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-02
Alexander Popov
Detect the compiler used for the kernel compilation
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-02
Alexander Popov
Don't use CONFIG_CC_IS_GCC in the checks (it was introd...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-02
Alexander Popov
Move get-nix-kconfig.py to kconfig_hardened_check/confi...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-02
Alexander Popov
Fix the X86_SMAP check: it is enabled by default since...
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
2022-09-02
Alexander Popov
Check the nosmap and nosmep cmdline parameters
commit
|
commitdiff
|
tree
| snapshot (
zip
tar.gz
)
next
projects / kconfig-hardened-check.git / shortlog