Git-Mirrors/DivestOS
1
0
Fork 0
mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2025-04-20 23:46:34 -04:00
Code Issues Packages Projects Releases Wiki Activity

Enable some kernel harden cmdline flags

Browse Source
This commit is contained in:
Simon Brand 2022-04-10 16:24:54 +00:00
parent 5431edd85b
commit 1f00f3dca0
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Scripts/Common/Functions.sh
View File

@ -533,7 +533,7 @@ export -f hardenUserdata;
hardenBootArgs() {
cd "$DOS_BUILD_BASE$1";
sed -i 's/BOARD_KERNEL_CMDLINE := /BOARD_KERNEL_CMDLINE := slub_debug=FZP /' BoardConfig*.mk */BoardConfig*.mk &>/dev/null || true; #TODO: inline this
sed -i 's/BOARD_KERNEL_CMDLINE := /BOARD_KERNEL_CMDLINE := init_on_alloc=1 init_on_free=1 page_alloc.shuffle=1 page_poison=1 kpti=on randomize_kstack_offset=on slab_nomerge slub_debug=FZP /' BoardConfig*.mk */BoardConfig*.mk &>/dev/null || true; #TODO: inline this
echo "Hardened kernel command line arguments for $1";
cd "$DOS_BUILD_BASE";
}