about summary refs log tree commit diff
path: root/pkgs/os-specific/linux/kernel/hardened-config.nix
AgeCommit message (Expand)AuthorFilesLines
2019-05-07hardened-config: enable the SafeSetID LSMJoachim Fasting1-0/+3
2019-01-28linux: convert hardened-config to a structured oneMatthieu Coudron1-120/+92
2019-01-11Revert "Revert "Revert "linux-hardened: Disable GCC_PLUGIN_RANDSTRUCT"""Pierre Bourdon1-0/+5
2019-01-07Revert "Revert "linux-hardened: Disable GCC_PLUGIN_RANDSTRUCT""Joachim Fasting1-5/+0
2019-01-05hardened-config: allow slub/slab free poisoningJoachim Fasting1-0/+3
2019-01-05hardened-config: explain HARDENED_USERCOPY_FALLBACK nJoachim Fasting1-1/+1
2019-01-05hardened-config: ensure STRICT_KERNEL_RWXJoachim Fasting1-0/+3
2019-01-05hardened-config: clarify MODIFY_LDT_SYSCALLJoachim Fasting1-3/+3
2019-01-05hardened-config: clarify readonly LSM hooks configJoachim Fasting1-7/+9
2019-01-05Revert "linux-hardened: Disable GCC_PLUGIN_RANDSTRUCT"Joachim Fasting1-0/+5
2019-01-04kernel/hardened-config.nix: add STACKLEAK plugin on 4.20+Pierre Bourdon1-0/+3
2019-01-04kernel/hardened-config.nix: re-enable GCC pluginsPierre Bourdon1-10/+8
2018-08-20treewide: Purge `stdenv.platform` and top-level `platform`John Ericson1-1/+1
2018-08-12linux: Init 4.18Tim Steinbach1-11/+14
2018-07-03linux-hardened: Adjust config for 4.17.4Tim Steinbach1-1/+3
2018-06-29linux-hardened: Adjust for Linux 4.17Tim Steinbach1-0/+3
2018-04-29linux_hardened: enforce usercopy whitelistingJoachim Fasting1-0/+3
2018-01-11linux-copperhead: 4.14.12.a -> 4.14.13.aTim Steinbach1-2/+2
2018-01-04linux_hardended: enable gcc latent entropy pluginFranz Pletz1-0/+3
2017-11-15linux_hardened: structleak covers structs passed by addressJoachim Fasting1-0/+3
2017-11-15linux_hardened: enable slab freelist hardeningJoachim Fasting1-0/+4
2017-10-11linux-hardened: Disable GCC_PLUGIN_RANDSTRUCTTim Steinbach1-5/+0
2017-09-16linuxPackages: hardened-config: enable DEBUG_PI_LISTJan Malakhovski1-0/+1
2017-09-16linuxPackages: hardened-config: check kernelArch, not systemJan Malakhovski1-1/+1
2017-09-16linuxPackages: hardened-config: disable `BUG_ON_DATA_CORRUPTION` for older ke...Jan Malakhovski1-1/+4
2017-09-16hardened-config: build with fortify sourceJoachim Fasting1-0/+5
2017-09-16hardened-config: enable the randstruct pluginJoachim Fasting1-0/+5
2017-09-16hardened-config: additional refcount checkingJoachim Fasting1-0/+4
2017-08-11hardened-config: enable read-only LSM hooksJoachim Fasting1-0/+8
2017-08-06linux-hardened-config: various fixupsJoachim Fasting1-28/+18
2017-08-06linux: Expand hardened configTim Steinbach1-23/+62
2017-05-18linux_hardened: enable checks on scatter-gather tablesJoachim Fasting1-0/+1
2017-05-09linux_hardened: enable structleak pluginJoachim Fasting1-0/+4
2017-05-09linux_hardened: BUG on struct validation failureJoachim Fasting1-0/+4
2017-05-09linux_hardened: move to 4.11Joachim Fasting1-6/+3
2017-05-09linux_hardened: compile with stackprotector-strongJoachim Fasting1-0/+3
2017-04-30linux_hardened: initJoachim Fasting1-0/+54
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-09-05 02:07:20 +0000