kpriv/linux-hardened
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
Minimal supplement to upstream Kernel Self Protection Project changes. Features already provided by SELinux + Yama and archs other than multiarch arm64 / x86_64 aren't in scope. Only tags have stable history. Shared IRC channel with KSPP: irc.libera.chat #linux-hardening
812058 commits 8 branches 1594 tags 3.2 GiB
C 97.7%
Assembly 1.2%
Shell 0.4%
Makefile 0.3%
Python 0.2%
Other 0.1%
Go to file
Levente Polyak 48936f55b8
Linux hardened 4.19.309-hardened1 
Signed-off-by: Levente Polyak <levente@leventepolyak.net>
2024-03-06 21:03:52 +01:00
arch x86: guarantee brk gap is at least one page 2024-03-06 21:02:21 +01:00
block remove unused softirq_action callback parameter 2024-03-06 20:57:37 +01:00
certs
crypto crypto: api - Disallow identical driver names 2024-02-23 08:12:39 +01:00
Documentation net: tcp: add option to disable TCP simultaneous connect 2024-03-06 21:03:45 +01:00
drivers security: tty: make TIOCSTI ioctl require CAP_SYS_ADMIN 2024-03-06 21:03:12 +01:00
firmware
fs enable protected_{fifos,regular} by default 2024-03-06 21:03:39 +01:00
include net: tcp: add option to disable TCP simultaneous connect 2024-03-06 21:03:45 +01:00
init disable unprivileged eBPF access by default 2024-03-06 21:03:25 +01:00
ipc
kernel enable BPF JIT hardening by default (if available) 2024-03-06 21:03:32 +01:00
lib sanity check for negative length in nla_memcpy 2024-03-06 21:00:31 +01:00
LICENSES
mm support randomizing the lower bits of brk 2024-03-06 21:01:55 +01:00
net net: tcp: add option to disable TCP simultaneous connect 2024-03-06 21:03:45 +01:00
samples samples/bpf: Fix buffer overflow in tcp_basertt 2023-08-11 11:45:03 +02:00
scripts add writable function pointer detection 2024-03-06 21:00:51 +01:00
security enable SECURITY_TIOCSTI_RESTRICT by default 2024-03-06 21:03:19 +01:00
sound ALSA: Drop leftover snd-rtctimer stuff from Makefile 2024-03-06 14:35:23 +00:00
tools security,perf: Allow further restriction of perf_event_open 2024-03-06 20:59:20 +01:00
usr
virt KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler 2024-03-01 13:06:11 +01:00
.clang-format
.cocciconfig
.get_maintainer.ignore
.gitattributes
.gitignore
.mailmap
COPYING
CREDITS
Kbuild
Kconfig
MAINTAINERS MAINTAINERS: r8169: Update path to the driver 2023-11-08 11:22:19 +01:00
Makefile Linux hardened 4.19.309-hardened1 2024-03-06 21:03:52 +01:00
README

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.
See Documentation/00-INDEX for a list of what is contained in each file.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.