security-misc

mirror of https://github.com/Kicksecure/security-misc.git synced 2025-12-29 06:04:36 -05:00

Author	SHA1	Message	Date
Aaron Rainbolt	e7e6d6d373	Merge remote-tracking branch 'raja/incomplete_cpu_mitigations' into arraybolt3/trixie-raja-merge	2025-12-14 14:01:54 -06:00
raja-grewal	b8f7806267	Update usage of `mitigations=auto,nosmt`	2025-12-14 12:38:47 +00:00
raja-grewal	7d90121302	Add reference for AMD SEV	2025-12-11 14:12:18 +00:00
raja-grewal	72f295a3f0	Provide option to enable AMD SEV-SNP	2025-12-11 14:11:47 +00:00
raja-grewal	6a17255307	Provide option to enable AMD SEV-ES	2025-12-11 14:11:26 +00:00
Aaron Rainbolt	b3eb739fe2	Link fix, change some wording	2025-11-30 00:20:21 -06:00
Aaron Rainbolt	5f34b4146e	Merge remote-tracking branch 'raja/docs' into arraybolt3/trixie	2025-11-30 00:12:18 -06:00
Aaron Rainbolt	2c253b1312	Merge remote-tracking branch 'raja/vsyscall32' into arraybolt3/trixie	2025-11-29 21:01:51 -06:00
Aaron Rainbolt	17ab1bb00f	Documentation fix	2025-11-29 20:44:30 -06:00
Aaron Rainbolt	2b2d30afce	Merge remote-tracking branch 'raja/limit_full_force' into arraybolt3/trixie	2025-11-29 20:23:09 -06:00
Aaron Rainbolt	b73a830b0f	Merge remote-tracking branch 'raja/kpti' into arraybolt3/trixie	2025-11-29 19:59:35 -06:00
Aaron Rainbolt	e54cb007f9	Merge remote-tracking branch 'raja/limit_bdev_writes' into arraybolt3/trixie	2025-11-29 19:54:10 -06:00
raja-grewal	62dc2d4483	Add note about Intel TME	2025-11-18 20:31:46 +11:00
raja-grewal	29176d2ed2	Remove the option to reduce the MCE tolerance level	2025-11-15 06:30:11 +00:00
raja-grewal	9f897c5ccd	Update docs on reducing the MCE tolerance level	2025-11-15 05:48:33 +00:00
raja-grewal	b6fe1a5a6e	Make panic related settings consistent Ensures the `sysctl` and boot parameters are equivalent in settings and in description. This should prevent future questions regarding having omitted boot parameters that were actually redundant.	2025-11-15 04:51:01 +00:00
raja-grewal	99e993b885	Provide options to enable AMD SME and SEV	2025-11-15 03:16:07 +00:00
raja-grewal	635c216d4e	Update docs on CPU mitigations	2025-11-05 01:44:36 +00:00
raja-grewal	a46f678c7f	Update docs on latent entropy	2025-11-05 00:05:17 +00:00
raja-grewal	37b493826e	Spit distrusting entropy settings for clarity	2025-11-05 00:03:54 +00:00
raja-grewal	019a0cf72c	Update docs on entropy	2025-11-05 00:03:19 +00:00
raja-grewal	e43d4d7f71	Set `bdev_allow_write_mounted=0`	2025-11-03 05:46:07 +00:00
raja-grewal	53d90b1128	Update docs on `ssbd=force-on`	2025-11-03 04:32:49 +00:00
raja-grewal	322584db33	Update docs on `pti=on`	2025-11-03 04:31:59 +00:00
raja-grewal	5e87c9bea4	Set `kpti=1`	2025-11-03 04:30:58 +00:00
raja-grewal	3fdfebc464	Set `proc_mem.force_override=ptrace`	2025-11-03 00:48:49 +00:00
raja-grewal	c5f91eb33a	Add another method to disable 32-bit legacy vsyscalls	2025-11-02 06:15:06 +00:00
raja-grewal	d175d1be52	Add doc on entropy related failure on AMD Zen 5 CPUs	2025-11-02 15:54:34 +11:00
raja-grewal	8f78269949	Add docs on slab_debug	2025-10-20 05:36:54 +00:00
raja-grewal	9f7480e20a	Make terminology consistent	2025-10-19 01:41:58 +00:00
raja-grewal	11d9b94038	Add docs on entropy	2025-10-17 01:01:28 +00:00
raja-grewal	708e1358df	Add docs relating `extra_latent_entropy`	2025-10-17 00:48:57 +00:00
Patrick Schleizer	28a88c7091	comment	2025-10-10 06:52:13 -04:00
raja-grewal	e89c7ae025	Update docs on `slab_debug` for future improvements	2025-10-08 02:39:20 +00:00
raja-grewal	4340bf50b7	Warnings about using `mitigations=auto,nosmt`	2025-09-29 15:46:06 +10:00
raja-grewal	b9deefed61	Incompleteness of `mitigations=auto,nosmt`	2025-09-25 15:34:54 +10:00
Patrick Schleizer	f70550d015	Split the `security-misc` into `security-misc-shared`, `security-misc-desktop` and `security-misc-server`: rename files https://github.com/Kicksecure/security-misc/issues/187	2025-09-17 14:49:28 -04:00
Patrick Schleizer	24424bcbc0	Merge pull request #318 from raja-grewal/vmscape Enable `vmscape=force`	2025-09-17 13:31:27 -04:00
raja-grewal	21c605e27e	Enable `vmscape=force`	2025-09-13 03:41:59 +00:00
raja-grewal	7b32e9339e	Update SRSO docs	2025-09-12 23:10:34 +10:00
raja-grewal	e48897cc44	Merge branch 'master' into panic_limits	2025-08-21 10:27:44 +10:00
raja-grewal	c0ad577793	Update docs on oops boot parameter	2025-08-19 11:01:06 +10:00
Aaron Rainbolt	37c0bc0c5d	Merge remote-tracking branch 'raja/block_32bit' into arraybolt3/trixie	2025-08-17 14:02:01 -05:00
Aaron Rainbolt	210aa97650	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-17 13:50:25 -05:00
raja-grewal	f175d1961e	Enable `ia32_emulation=0`	2025-08-17 07:08:08 +00:00
raja-grewal	e06b78a522	Temporarily revert IA32 doc updates	2025-08-17 07:05:32 +00:00
Aaron Rainbolt	7a8dfa528c	Merge remote-tracking branch 'raja/trixie_docs' into arraybolt3/trixie	2025-08-16 21:10:19 -05:00
raja-grewal	1f75426f07	Clarify docs for disabling 32-bit x86 support	2025-08-16 02:20:00 +00:00
Aaron Rainbolt	65afc31ba7	Merge branch 'kcfi' into arraybolt3/trixie	2025-08-15 16:31:50 -05:00
raja-grewal	4166d6d1e6	Update docs on recovery restrictions	2025-08-06 15:53:49 +10:00

1 2 3 4 5

212 commits