X-Git-Url: https://jxself.org/git/?a=blobdiff_plain;f=config_files%2Fkspp-recommendations%2Fkspp-recommendations-x86-32.config;fp=config_files%2Fkspp-recommendations%2Fkspp-recommendations-x86-32.config;h=477d75c1dd1608cdc313bb723986657518df10fd;hb=0e4ee10bbfe1158a30eb88095fbb58fae39ce23d;hp=04bdced02a9fdf93fc7ff456cfcd583c3cb6a29e;hpb=f83f122012477f50fe127d43aedbcd38a16ae292;p=kconfig-hardened-check.git

diff --git a/config_files/kspp-recommendations/kspp-recommendations-x86-32.config b/config_files/kspp-recommendations/kspp-recommendations-x86-32.config
index 04bdced..477d75c 100644
--- a/config_files/kspp-recommendations/kspp-recommendations-x86-32.config
+++ b/config_files/kspp-recommendations/kspp-recommendations-x86-32.config
@@ -1,5 +1,5 @@
 # CONFIGs
-# Linux/i386 4.20.0 Kernel Configuration
+# Linux/i386 5.4.0 Kernel Configuration
 
 # Report BUG() conditions and kill the offending process.
 CONFIG_BUG=y
@@ -165,3 +165,10 @@ CONFIG_DEFAULT_MMAP_MIN_ADDR=65536
 # Randomize position of kernel.
 CONFIG_RANDOMIZE_BASE=y
 
+# Enable Kernel Page Table Isolation to remove an entire class of cache timing side-channels.
+CONFIG_PAGE_TABLE_ISOLATION=y
+
+# Don't allow for 16-bit program emulation and associated LDT tricks.
+# CONFIG_MODIFY_LDT_SYSCALL is not set
+
+