public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

linux: add in kernel 5.4 lockdown feature

Browse Source
This commit is contained in:
Izorkin 2019-12-05 11:20:07 +03:00 committed by Matthieu Coudron
parent abc9b32fc6
commit 928fdab4a1
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
pkgs/os-specific/linux/kernel/common-config.nix
View File

@ -363,6 +363,7 @@ let
SECURITY_APPARMOR = yes; SECURITY_APPARMOR = yes;
DEFAULT_SECURITY_APPARMOR = yes; DEFAULT_SECURITY_APPARMOR = yes;
SECURITY_LOCKDOWN_LSM = whenAtLeast "5.4" yes;
} // optionalAttrs (!stdenv.hostPlatform.isAarch32) { } // optionalAttrs (!stdenv.hostPlatform.isAarch32) {
# Detect buffer overflows on the stack # Detect buffer overflows on the stack