summary refs log tree commit diff
diff options
context:
space:
mode:
authorEmily <vcs@emily.moe>2020-04-04 23:05:28 +0100
committerEmily <vcs@emily.moe>2020-04-17 16:13:39 +0100
commit4fb796e34129934ed9c26c64beb1a0f93639957e (patch)
tree1d916e58e6c4e971159c09a4fd9539c1a6a85d69
parent3eeb5240ac1f01f2adf8f0947bbb73cf36af8dc4 (diff)
downloadnixpkgs-4fb796e34129934ed9c26c64beb1a0f93639957e.tar
nixpkgs-4fb796e34129934ed9c26c64beb1a0f93639957e.tar.gz
nixpkgs-4fb796e34129934ed9c26c64beb1a0f93639957e.tar.bz2
nixpkgs-4fb796e34129934ed9c26c64beb1a0f93639957e.tar.lz
nixpkgs-4fb796e34129934ed9c26c64beb1a0f93639957e.tar.xz
nixpkgs-4fb796e34129934ed9c26c64beb1a0f93639957e.tar.zst
nixpkgs-4fb796e34129934ed9c26c64beb1a0f93639957e.zip
linux_*_hardened: don't set HARDENED_USERCOPY_FALLBACK
Upstreamed in anthraxx/linux-hardened@c1fe7a68e368d05e109e69ee3491da69093883a3,
anthraxx/linux-hardened@2c553a2bb115211c8e1c97eb8c949320aeb29a1d.
Diffstat
-rw-r--r--pkgs/os-specific/linux/kernel/hardened-config.nix4
1 files changed, 0 insertions, 4 deletions
diff --git a/pkgs/os-specific/linux/kernel/hardened-config.nix b/pkgs/os-specific/linux/kernel/hardened-config.nix
index d322f239c32..f718235c625 100644
--- a/pkgs/os-specific/linux/kernel/hardened-config.nix
+++ b/pkgs/os-specific/linux/kernel/hardened-config.nix
@@ -46,10 +46,6 @@ assert (versionAtLeast version "4.9");
 
   REFCOUNT_FULL = whenAtLeast "4.13" yes;
 
-  # Perform usercopy bounds checking.
-  HARDENED_USERCOPY = yes;
-  HARDENED_USERCOPY_FALLBACK = whenAtLeast "4.16" no; # for full whitelist enforcement
-
   # Randomize allocator freelists.
   SLAB_FREELIST_RANDOM = yes;
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-18 17:05:03 +0000