summaryrefslogtreecommitdiffstats
path: root/fragments/base (unfollow)
Commit message (Collapse)AuthorLines
2022-06-04fragments: Remove reference to CONFIG_UNUSED_SYMBOLSWolfgang Müller-2/+0
This option does no longer exist in the 5.15 branch.
2022-06-04fragments: Add requisite option for KSPWolfgang Müller-0/+1
2021-08-13fragments: Update to latest KSP recommendationsWolfgang Müller-0/+5
The Gentoo KSP recommendations have changed slightly again, now requiring three different settings instead of just one. Additionally, in order to enable KSP at all, CONFIG_MODIFY_LDT_SYSCALL needs to be unset.
2021-08-13fragments: Enable CONFIG_SECURITYWolfgang Müller-0/+2
An upcoming commit updates to the latest KSP recommendations and requires this particular setting as a direct dependency for CONFIG_SECURITY_YAMA.
2021-08-13fragments: Use expert mode by defaultWolfgang Müller-0/+2
An upcoming commit which updates to the latest KSP recommendations requires expert mode for one setting. Enable it here.
2021-07-20fragments: Remove obsoleted KSP switchWolfgang Müller-1/+0
The newer versions of sys-kernel/gentoo-sources do not have this switch anymore, instead relying only on the architecture-specific switches. Remove it.
2021-07-03fragments: Enable GENTOO_KERNEL_SELF_PROTECTIONWolfgang Müller-0/+3
This setting pulls in a set of recommended settings [1] from the Kernel Self Protection Project. We are pretty sure that we exhaustively set all these manually already, but since Gentoo upstream provides this option, make use of it too. [1] https://kernsec.org/wiki/index.php/Kernel_Self_Protection_Project/Recommended_Settings
2021-03-06fragments: Enable CONFIG_RASWolfgang Müller-0/+1
This is needed for CONFIG_EDAC* but is not enabled by default upstream.
2021-03-06fragments: Remove superfluous options for 5.10Wolfgang Müller-1/+0
These options have either been merged into others or enabled unconditionally.
2020-02-29Improve security by disabling vsyscall table for legacy appsWynn Wolf Arbor-0/+3
2020-02-29Remove deprecated kernel optionsWynn Wolf Arbor-11/+0
2020-02-29Allow multiple routing tables for IPv6Wynn Wolf Arbor-0/+2