Enable sysctl checking

author Alexander Popov <alex.popov@linux.com>

Sun, 13 Aug 2023 16:28:05 +0000 (19:28 +0300)

committer Alexander Popov <alex.popov@linux.com>

Sun, 13 Aug 2023 16:28:05 +0000 (19:28 +0300)
author Alexander Popov <alex.popov@linux.com>
Sun, 13 Aug 2023 16:28:05 +0000 (19:28 +0300)
committer Alexander Popov <alex.popov@linux.com>
Sun, 13 Aug 2023 16:28:05 +0000 (19:28 +0300)
diff --git a/kconfig_hardened_check/__init__.py b/kconfig_hardened_check/__init__.py

index 09d49d70a473c48782edcdb7e5dcac46bc0cc26c..7b4993faea3a7f246498c2b0792d8fc28cf2e630 100644 (file)
--- a/kconfig_hardened_check/__init__.py
+++ b/kconfig_hardened_check/__init__.py
@@ -239,14 +239,13 @@ def main():
                          help='check the security hardening options in the kernel Kconfig file (also supports *.gz files)')
      parser.add_argument('-l', '--cmdline',
                          help='check the security hardening options in the kernel cmdline file (contents of /proc/cmdline)')
-#   parser.add_argument('-s', '--sysctl',
-#                       help='check the security hardening options in the sysctl output file (`sudo sysctl -a > file`)')
+    parser.add_argument('-s', '--sysctl',
+                        help='check the security hardening options in the sysctl output file (`sudo sysctl -a > file`)')
      parser.add_argument('-p', '--print', choices=supported_archs,
                          help='print the security hardening recommendations for the selected microarchitecture')
      parser.add_argument('-g', '--generate', choices=supported_archs,
                          help='generate a Kconfig fragment with the security hardening options for the selected microarchitecture')
      args = parser.parse_args()
-    args.sysctl = None # FIXME
  
      mode = None
      if args.mode:
author	Alexander Popov <alex.popov@linux.com>
	Sun, 13 Aug 2023 16:28:05 +0000 (19:28 +0300)
committer	Alexander Popov <alex.popov@linux.com>
	Sun, 13 Aug 2023 16:28:05 +0000 (19:28 +0300)