[src/trunk]: src/sys/dev Add a configuration file for enabling Veriexec in ke...

To: source-changes-hg%NetBSD.org@localhost
Subject: [src/trunk]: src/sys/dev Add a configuration file for enabling Veriexec in ke...
From: sevan <sevan%NetBSD.org@localhost>
Date: Tue, 07 Apr 2020 12:12:41 +0000

details:   https://anonhg.NetBSD.org/src/rev/a709e370e772
branches:  trunk
changeset: 841068:a709e370e772
user:      sevan <sevan%NetBSD.org@localhost>
date:      Fri Apr 26 18:41:24 2019 +0000

description:
Add a configuration file for enabling Veriexec in kernel config(5) files.

diffstat:

 sys/dev/veriexec.config |  18 ++++++++++++++++++
 1 files changed, 18 insertions(+), 0 deletions(-)

diffs (22 lines):

diff -r 0329d6475670 -r a709e370e772 sys/dev/veriexec.config
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/sys/dev/veriexec.config   Fri Apr 26 18:41:24 2019 +0000
@@ -0,0 +1,18 @@
+# $NetBSD: veriexec.config,v 1.1 2019/04/26 18:41:24 sevan Exp $
+#
+# This file contains all Veriexec related configuration.
+# It is suitable for inclusion in a kernel config(5) file.
+#
+
+options        FILEASSOC               # fileassoc(9) - needed by Veriexec
+                                       # and PAX_SEGVGUARD
+
+# a pseudo device needed for veriexec
+pseudo-device  veriexec
+#
+# Note that removing fingerprint methods will have almost no impact on the
+# kernel code size.
+#
+options VERIFIED_EXEC_FP_SHA256
+options VERIFIED_EXEC_FP_SHA384
+options VERIFIED_EXEC_FP_SHA512

Prev by Date: [src/trunk]: src/sys/arch/hppa/hppa KNF
Next by Date: [src/trunk]: src/external/mit/xorg/lib/dri Amputate stack protector warnings, ...
Previous by Thread: [src/trunk]: src/sys/arch/hppa/hppa KNF
Next by Thread: [src/trunk]: src/external/mit/xorg/lib/dri Amputate stack protector warnings, ...
Indexes:

Home | Main Index | Thread Index | Old Index