5 Commits

Author	SHA1	Message	Date
inference	838428152e	Disable kvm.nx_huge_pages mitigation. Disable L1 Terminal Fault mitigation due to current CPU not being vulnerable. Disable Microarchitectural Data Sampling mitigation due to current CPU not being vulnerable. Disable MMIO stale data mitigation due to current CPU not being vulnerable. Disable Page Table Isolation mitigation due to current CPU not being vulnerable. Disable Retbleed mitigation due to current CPU not being vulnerable. Enable Spectre V2 mitigation due to current CPU being vulnerable. Enable Speculative Store Bypass mitigation due to current CPU being vulnerable. Disable Special Register Buffer Data Sampling mitigation due to current CPU not being vulnerable. Disable Transactional Synchronization Extensions mitigation async abort due to current CPU not being vulnerable. Disable debugfs. Enable initialize-on-allocation to ensure memory is zeroed on allocation. Enable initialize-on-free to ensure memory is zeroed on free. Enable page allocation shuffle. Enable randomize kstack offset. Disable SLAB merging. Disable vsyscall. Disable SMT for protection against potential security issues. Remove CPU mitigations not applicable to current CPU. Remove wireless support. Build system firmware into kernel.	2022-09-16 23:10:16 +01:00
inference	1478da90ed	Increase maximum number of CPUs to 12. Build AMD Zen and Zen 3 microcode into kernel. Remove virtualisation support from kernel.	2022-09-13 22:18:27 +01:00
inference	a633ce2b15	Update Linux 5.15.52 to 5.15.59.	2022-09-06 19:53:16 +01:00
inference	33c391aadf	Update Linux kernel configuration file from 5.15.41 to 5.15.52.	2022-07-12 12:03:35 +01:00
inference	de05dff8d5	Add Linux directory. Add Linux kernel configuration file.	2022-07-09 13:03:42 +01:00