projects / kconfig-hardened-check.git / shortlog
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
kconfig-hardened-check.git
2023-08-27 Alexander PopovSupport separate sysctl checking (without kconfig) commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovImprove coverage of the functional test a bit commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovClean .gitignore commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovShow git information in the functional test commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovTest an invalid sysctl file commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovTest an unexpected line in the sysctl file commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovTest an unexpected line in the Kconfig file commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovDrop `if __name__ == "__main__"` from ./bin/kconfig... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovTurn the warning about unexpected line in Kconfig file... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-14 Alexander PopovUpdate the README (add the --sysctl mode) commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovAdd the Kconfig file of Fedora 38 commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovUse example_sysctls.txt in the functional test commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovAdd an example sysctl output file commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovAdd the / symbol to the sysctl parsing pattern commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovAdd --sysctl to functional testing commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovImprove checking the combinations of flags in the funct... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovFix syntax to run on the Woodpecker 1.0.0 CI (part II) commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovFix syntax to run on the Woodpecker 1.0.0 CI commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovReport that --print and --generate can't be used together commit | commitdiff | tree | snapshot (zip tar.gz)
2023-08-13 Alexander PopovEnable sysctl checking commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander PopovCheck the kernel.unprivileged_bpf_disabled sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander PopovCheck the dev.tty.ldisc_autoload sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander PopovCheck the user.max_user_namespaces sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander PopovCheck the kernel.kexec_load_disabled sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander PopovCheck the kernel.perf_event_paranoid sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander PopovCheck the kernel.dmesg_restrict sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander PopovCheck the net.core.bpf_jit_harden sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander Popovtest_engine: use SysctlCheck in test_value_overriding() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander Popovtest_engine: use SysctlCheck in test_stdout() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander Popovtest_engine: implement test_simple_sysctl() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-23 Alexander Popovtest_engine: support SysctlCheck commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-22 Alexander PopovRefactor populate_opt_with_data() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-16 Alexander PopovMute warnings in the JSON mode and improve wording commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-16 Alexander PopovImplement parse_sysctl_file() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-15 Alexander PopovDrop an obsolete error handling test commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-15 Alexander PopovFix the bug in the functional tests commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-15 Alexander PopovEmit WARNING for the cmdline options that exist multipl... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-15 Alexander PopovPrecise the Kconfig parsing commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-12 Alexander PopovGet rid of useless regular expressions in detect_compiler() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-12 Alexander PopovPrecise the regular expressions in detect_arch() and... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-12 Alexander PopovShow error if some cmdline option exists multiple times commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-08 Alexander PopovAdd the basic infrastructure for checking sysctl commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-08 Alexander PopovIntroduce the SysctlCheck class commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-04 Alexander PopovCheck disabling XFS_SUPPORT_V4 for cutting attack surface commit | commitdiff | tree | snapshot (zip tar.gz)
2023-07-02 Alexander PopovPrint the microarchitecture in --generate mode commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-25 Alexander PopovUpdate the README commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-25 Alexander PopovAdd the info about /proc/cmdline to the usage help commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-18 Alexander Popovsetup: fix "The license_file parameter is deprecated" commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-18 Alexander Popovsetup: Don't use the automatic "find_namespace:" discovery commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-18 Alexander Popovsetup: Fix the warning "Package would be ignored" commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-18 Alexander Popovsetup: Drop obsolete zip_safe flag commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-17 Alexander PopovMove the draft of the security hardening sysctls to... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-17 Alexander PopovImprove normalize_cmdline_options() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovGitHub Actions: decrease the max-parallel to 1 to avoid... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovAdd functional tests for --generate commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovUpdate the README commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovAdd a new feature --generate commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovRefactoring of the argument parsing commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovImprove the comments and README (part II) commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovSkip normalize_cmdline_options() for the vdso32 and... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovSkip normalize_cmdline_options() for the vsyscall cmdli... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovSkip normalize_cmdline_options() for the iommu cmdline... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovSkip normalize_cmdline_options() for the slub_debug... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-12 Alexander PopovImprove the comments and README commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-05 Alexander PopovSkip normalize_cmdline_options() for the rodata cmdline... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-06-05 Alexander PopovSkip normalize_cmdline_options() for the ssbd cmdline... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-28 Alexander PopovAdd a comment about cfi boot parameter commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-28 Alexander PopovAdd the X86_KERNEL_IBT check commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-28 Alexander PopovAdd a comment about `kernel.oops_limit` and `kernel... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-27 Alexander PopovAdd a comment about `kernel.unprivileged_userns_clone... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-27 Alexander PopovAdd the comments about HARDENED_USERCOPY features commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-09 Alexander PopovFix CI output style and move `pip install coverage... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-08 Alexander PopovUse .github/workflows/functional_test.sh in GitHub... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-08 Alexander PopovRun the functional tests and collect the coverage in... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-08 Alexander PopovCheck all configs with the installed tool the functiona... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-08 Alexander PopovTest the package installation in the functional test... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-07 Alexander PopovRun the engine unit-test in Woodpecker-CI commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-07 Alexander PopovCreate multiple pipelines for Woodpecker-CI at Codeberg commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-07 Alexander PopovCreate a configuration template for Codeberg CI (.woodp... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-05-01 Alexander PopovAdd the checks for vdso32 and vdso on X86_64 and X86_32 commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-30 Alexander PopovImprove the COMPAT_VDSO check commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-30 Alexander PopovImprove the vsyscall checks commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-30 Alexander PopovAdd the comment about kernel.sysrq=0 commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-22 Alexander PopovMake hackish refinement of the CONFIG_ARCH_MMAP_RND_BIT... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-22 Alexander Popovtest_engine: add test_value_overriding() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-22 Alexander Popovengine: implement override_expected_value() commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-22 Alexander PopovRequire one of major LSMs implementing MAC commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-22 Alexander PopovAdd the norandmaps check commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-22 Alexander PopovCheck that CoreSight Tracing Support is disabled (to... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-09 Alexander PopovDrop the INTEGRITY check commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-09 Alexander PopovAdd the DEBUG_ALIGN_RODATA check for ARM commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-09 Alexander PopovAdd new Android kernel configs from my friends commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-09 Alexander PopovAdd the LEGACY_TIOCSTI check commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-02 Alexander Popovengine: remove the unused 'type' property from the... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-02 Alexander Popovtest_engine: rename unit-tests commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-02 Alexander Popovtest_engine: increase the unit-test coverage commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-02 Alexander Popovtest_engine: test the non-verbose output mode commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-02 Alexander Popovtest_engine: support the non-verbose output mode in... commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-02 Alexander PopovFix a pylint warning about f-string commit | commitdiff | tree | snapshot (zip tar.gz)
2023-04-02 Alexander Popovtest_engine: add test_verbose() commit | commitdiff | tree | snapshot (zip tar.gz)
next
kconfig-hardened-check