Merge branch 'page-table-check'

author Alexander Popov <alex.popov@linux.com>

Sun, 9 Jun 2024 09:00:36 +0000 (12:00 +0300)

committer Alexander Popov <alex.popov@linux.com>

Sun, 9 Jun 2024 09:00:36 +0000 (12:00 +0300)
author Alexander Popov <alex.popov@linux.com>
Sun, 9 Jun 2024 09:00:36 +0000 (12:00 +0300)
committer Alexander Popov <alex.popov@linux.com>
Sun, 9 Jun 2024 09:00:36 +0000 (12:00 +0300)
diff --git a/kernel_hardening_checker/checks.py b/kernel_hardening_checker/checks.py

index 07364d7b41753fce504b3da01a20bbd07c3afc90..7ac45b16ee72532aac4275fe530bc72fe85d07b9 100644 (file)
--- a/kernel_hardening_checker/checks.py
+++ b/kernel_hardening_checker/checks.py
@@ -135,6 +135,8 @@ def add_kconfig_checks(l: List[ChecklistObjType], arch: str) -> None:
          l += [KconfigCheck('self_protection', 'defconfig', 'DEBUG_ALIGN_RODATA', 'y')]
  
      # 'self_protection', 'kspp'
+    l += [KconfigCheck('self_protection', 'kspp', 'PAGE_TABLE_CHECK', 'y')]
+    l += [KconfigCheck('self_protection', 'kspp', 'PAGE_TABLE_CHECK_ENFORCED', 'y')]
      l += [KconfigCheck('self_protection', 'kspp', 'BUG_ON_DATA_CORRUPTION', 'y')]
      l += [KconfigCheck('self_protection', 'kspp', 'SLAB_FREELIST_HARDENED', 'y')]
      l += [KconfigCheck('self_protection', 'kspp', 'SLAB_FREELIST_RANDOM', 'y')]
author	Alexander Popov <alex.popov@linux.com>
	Sun, 9 Jun 2024 09:00:36 +0000 (12:00 +0300)
committer	Alexander Popov <alex.popov@linux.com>
	Sun, 9 Jun 2024 09:00:36 +0000 (12:00 +0300)