linux-hardened

Minimal supplement to upstream Kernel Self Protection Project changes. Features already provided by SELinux + Yama and archs other than multiarch arm64 / x86_64 aren't in scope. Only tags have stable history. Shared IRC channel with KSPP: irc.libera.chat #linux-hardening

Find a file

Masahiro Yamada c93a0368aa kbuild: do not create wrappers for header-test-y header-test-y does not work with headers in sub-directories. For example, you may want to write a Makefile, like this: include/linux/Kbuild: header-test-y += mtd/nand.h This entry will create a wrapper include/linux/mtd/nand.hdrtest.c with the following content: #include "mtd/nand.h" To make this work, we need to add $(srctree)/include/linux to the header search path. It would be tedious to add ccflags-y. Instead, we could change the *.hdrtest.c rule to wrap: #include "nand.h" This works for in-tree build since #include "..." searches in the relative path from the header with this directive. For O=... build, we need to add $(srctree)/include/linux/mtd to the header search path, which will be even more tedious. After all, I thought it would be handier to compile headers directly without creating wrappers. I added a new build rule to compile %.h into %.h.s The target is %.h.s instead of %.h.o because it is slightly faster. Also, as for GCC, an empty assembly is smaller than an empty object. I wrote the build rule: $(CC) $(c_flags) -S -o $@ -x c /dev/null -include $< instead of: $(CC) $(c_flags) -S -o $@ -x c $< Both work fine with GCC, but the latter is bad for Clang. This comes down to the difference in the -Wunused-function policy. GCC does not warn about unused 'static inline' functions at all. Clang does not warn about the ones in included headers, but does about the ones in the source. So, we should handle headers as headers, not as source files. In fact, this has been hidden since commit `abb2ea7dfd` ("compiler, clang: suppress warning for unused static inline functions"), but we should not rely on that. Signed-off-by: Masahiro Yamada <yamada.masahiro@socionext.com> Acked-by: Jani Nikula <jani.nikula@intel.com> Tested-by: Jani Nikula <jani.nikula@intel.com>		2019-07-09 10:10:27 +09:00
arch	kbuild: add CONFIG_HEADERS_INSTALL and loosen the dependency of samples	2019-06-15 19:57:01 +09:00
block	block, bfq: add weight symlink to the bfq.weight cgroup parameter	2019-06-07 01:29:40 -06:00
certs	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36	2019-05-24 17:27:11 +02:00
crypto	SPDX update for 5.2-rc4	2019-06-08 12:52:42 -07:00
Documentation	kbuild: do not create wrappers for header-test-y	2019-07-09 10:10:27 +09:00
drivers	kbuild: add support for ensuring headers are self-contained	2019-06-15 19:57:02 +09:00
fs	A change to call iput() asynchronously to avoid a possible deadlock	2019-06-08 15:57:35 -07:00
include	kbuild: re-implement Makefile.headersinst without recursion	2019-06-15 19:57:02 +09:00
init	kbuild: compile-test exported headers to ensure they are self-contained	2019-07-08 23:13:57 +09:00
ipc	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441	2019-06-05 17:37:17 +02:00
kernel	SPDX update for 5.2-rc4	2019-06-08 12:52:42 -07:00
lib	lib/raid6: refactor unroll rules with pattern rules	2019-06-24 03:43:03 +09:00
LICENSES	LICENSES: Rename other to deprecated	2019-05-03 06:34:32 -06:00
mm	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441	2019-06-05 17:37:17 +02:00
net	init/Kconfig: add CONFIG_CC_CAN_LINK	2019-07-08 02:25:59 +09:00
samples	kbuild: add CONFIG_HEADERS_INSTALL and loosen the dependency of samples	2019-06-15 19:57:01 +09:00
scripts	kbuild: do not create wrappers for header-test-y	2019-07-09 10:10:27 +09:00
security	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441	2019-06-05 17:37:17 +02:00
sound	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441	2019-06-05 17:37:17 +02:00
tools	SPDX update for 5.2-rc4	2019-06-08 12:52:42 -07:00
usr	kbuild: compile-test exported headers to ensure they are self-contained	2019-07-08 23:13:57 +09:00
virt	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 333	2019-06-05 17:37:06 +02:00
.clang-format	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net	2019-04-17 11:26:25 -07:00
.cocciconfig
.get_maintainer.ignore	Opt out of scripts/get_maintainer.pl	2019-05-16 10:53:40 -07:00
.gitattributes	.gitattributes: set git diff driver for C source code files	2016-10-07 18:46:30 -07:00
.gitignore	kbuild: do not create wrappers for header-test-y	2019-07-09 10:10:27 +09:00
.mailmap	A reasonably busy cycle for docs, including:	2019-05-08 12:42:50 -07:00
COPYING	COPYING: use the new text with points to the license files	2018-03-23 12:41:45 -06:00
CREDITS	MAINTAINERS: Farewell Martin Schwidefsky	2019-05-31 10:14:11 +02:00
Kbuild	Kbuild updates for v5.1	2019-03-10 17:48:21 -07:00
Kconfig	kconfig: move the "Executable file formats" menu to fs/Kconfig.binfmt	2018-08-02 08:06:55 +09:00
MAINTAINERS	Merge branch 'i2c/for-current' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux	2019-06-08 12:48:49 -07:00
Makefile	kbuild: do not create wrappers for header-test-y	2019-07-09 10:10:27 +09:00
README	Drop all 00-INDEX files from Documentation/	2018-09-09 15:08:58 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.