projects / kconfig-hardened-check.git / shortlog
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
kconfig-hardened-check.git
2021-06-19 Alexander PopovReorder arch checks commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovSECURITY_DMESG_RESTRICT is recommended by KSPP now commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovThink about kptr_restrict later (KSPP recommends to... commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovMention that nosmt is slow commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovMore info on init_on_free and init_on_alloc commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovSLUB_DEBUG_ON is very slow, leave it for the kernel... commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovUpdate KSPP recommendations commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovAdd defconfigs for v5.10 commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-19 Alexander PopovHARDEN_BRANCH_PREDICTOR for ARM64 is enabled by default... commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-18 Alexander PopovAdd ARM64_MTE for userspace commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-18 Alexander PopovMaybe SHADOW_CALL_STACK should be alternative to STACKP... commit | commitdiff | tree | snapshot (zip tar.gz)
2021-06-18 Alexander PopovSave 'debugfs=no-mount' for future commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-30 Alexander PopovUpdate the README. v0.5.9 commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-30 Alexander PopovFix indentation (thanks to pylint) commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-29 Alexander PopovAdd a Q&A about spectre-meltdown-checker maintained... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-23 Alexander PopovINIT_STACK_ALL -> INIT_STACK_ALL_ZERO (was renamed) commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-23 Alexander PopovAdd SHADOW_CALL_STACK for ARM64 commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-22 Alexander PopovAdd the recommendation about TRIM_UNUSED_KSYMS commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-22 Alexander PopovAdd ARM64_BTI_KERNEL commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-22 Alexander PopovAdd the recommendation about UBSAN_BOUNDS commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-22 Alexander PopovPAGE_POISONING -> PAGE_POISONING_ZERO commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-22 Alexander PopovImprove AND check reports commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-22 Alexander PopovImprove HARDEN_EL2_VECTORS check commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-22 Alexander PopovMerge remote-tracking branch 'pgils/el2_vectors' commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-21 Alexander PopovAdd nested ComplexOptChecks support commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-19 Pelle van GilsDo not check CONFIG_HARDEN_EL2_VECTORS for v5.9+ 48/head commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-16 Alexander PopovAdd TODO about SLUB_DEBUG_ON commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-16 Alexander PopovAdd CLIP OS recommendation about EFI_CUSTOM_SSDT_OVERLAYS commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-16 Alexander PopovDisabling ACPI_TABLE_UPGRADE is now recommended by... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-16 Alexander PopovWithdraw my recommendation about BPF_JIT commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-14 Alexander PopovUse cross compiler to build defconfigs commit | commitdiff | tree | snapshot (zip tar.gz)
2020-10-14 Alexander PopovAdd defconfigs for Linux kernel v5.9 commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovUpdate the README v0.5.7 commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovFix relevant pylint warnings commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovFix 'decision' priority order ('lockdown' vs 'clipos... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovAdd CLIP OS recommendations about CONFIG_IO_URING and... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovAdd CONFIG_EFI_DISABLE_PCI_DMA recommended by CLIP OS commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovFix 'decision' -- CONFIG_INTEGRITY is not enabled by... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovAdd defconfigs for Linux kernel v5.7 commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovTake new AND use case for X86_PTDUMP / PTDUMP_DEBUGFS commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovImprove ComplexOptCheck use cases commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-15 Alexander PopovAdd 'show_ok' and 'show_fail' print modes commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-13 Alexander PopovDeclare variables closer to their usage commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-13 Alexander PopovGet rid of 'kernel_version' global variable commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-13 Alexander PopovBig rework of the report modes commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-13 Alexander PopovAdd another link about user namespaces to Q&A commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-10 Alexander PopovAdd ARM64_PAN commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-09 Alexander PopovUse += instead of append() for checklist commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-09 Alexander PopovReorder some checking rules for better looking code commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-09 Alexander PopovChange the order of arguments in OptCheck constructor commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-09 Alexander PopovDrop unused 'state' property from ComplexOptCheck commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-09 Alexander PopovDon't return self.result in check() method -- it's... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-06 Alexander PopovARM64_PTR_AUTH is now supported for the kernel (from... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-07-03 Alexander PopovAdd the link to huldufolk project by @tych0 commit | commitdiff | tree | snapshot (zip tar.gz)
2020-05-30 Alexander PopovAdd the link to @BlackIkeEagle article commit | commitdiff | tree | snapshot (zip tar.gz)
2020-05-06 Alexander PopovMerge branch 'ubuntu20' commit | commitdiff | tree | snapshot (zip tar.gz)
2020-05-05 HacKurxUpgrading to Ubuntu 20.04 kernel config 43/head commit | commitdiff | tree | snapshot (zip tar.gz)
2020-04-09 Alexander PopovMerge branch 'evbug' commit | commitdiff | tree | snapshot (zip tar.gz)
2020-04-09 Alexander PopovMerge branch 'pylint' commit | commitdiff | tree | snapshot (zip tar.gz)
2020-04-09 HacKurxUpdating the number of failures in the README 41/head commit | commitdiff | tree | snapshot (zip tar.gz)
2020-04-09 HacKurxAdd CONFIG_INPUT_EVBUG commit | commitdiff | tree | snapshot (zip tar.gz)
2020-04-08 shamilbipylint some code 40/head commit | commitdiff | tree | snapshot (zip tar.gz)
2020-04-06 Alexander PopovImprove versioning commit | commitdiff | tree | snapshot (zip tar.gz)
2020-04-03 Alexander PopovAdd DRM_LEGACY, FB, and VT checks commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-31 Alexander PopovImplement PresenceCheck and use it for LDISC_AUTOLOAD commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-31 Alexander PopovFix ComplexOptCheck result printing commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-31 Alexander PopovNewline should be printed by print_checklist() that... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-31 Alexander PopovAdd more tests to increase coverage - IV commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-31 Alexander PopovCreate polymorphism for printing, add table_print(... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-31 Alexander PopovRevisit special behavior in checking and printing that... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-31 Alexander PopovRename some workflow steps commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovAdd more tests to increase coverage - III commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovAdd more tests to increase coverage - II commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovAdd more tests to increase coverage - I commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovCollect coverage commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovCount checked configs commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovCheck all configs automatically commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovRevisit return values commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-30 Alexander PopovCreate the github workflow for functional tests commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-28 Alexander PopovFix the shebang to allow `./get-nix-kconfig.py` commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-27 Alexander PopovAdd NixOS hardened kernel config commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovFix typo in README commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovAdd vim swp files to gitignore commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovMerge branch 'nix' commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Jörg Thalheimadd script to download linux kernel configs from nix commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Jörg Thalheimadd gitignore commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Jörg Thalheimadd default.nix for installation via nix commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovUpdate the README (describing installation) commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovAdd a wrapper for using the tool without installation... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovEnable distribution via pip/setuptools commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovCall it a tool commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-26 Alexander PopovUh, setuptools doesn't like package names that contain... commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-25 Alexander PopovAdd main() and clean up working with globals commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-25 Alexander PopovRename to kconfig-hardened-check/__init__.py commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-25 Alexander PopovMove files to kconfig-hardened-check folder commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-25 Alexander PopovRename LICENSE file commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-24 Alexander PopovVersion 0.5.5 (supports Linux kernel v5.5) v0.5.5 commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-24 Alexander PopovUpdate the README commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-24 Alexander PopovCLIP OS recommends disabling Intel TSX commit | commitdiff | tree | snapshot (zip tar.gz)
2020-03-24 Alexander PopovSmall syctl cleanup commit | commitdiff | tree | snapshot (zip tar.gz)
next
kconfig-hardened-check