Config change in 5.19.X

[Churam]

Hello,

The X86_SMAP option is no longer present in 5.19.X kernels. It is now enforced.
( commit )

Since it has been removed, the script mark the entry as failed.

[+] Special report mode: show_fail
[+] Kconfig file to check: /opt/KERNEL/linux-5.19.5/.config
[+] Detected architecture: X86_64
[+] Detected kernel version: 5.19
=========================================================================================================================
              option name               | type  |desired val | decision |      reason      | check result
=========================================================================================================================
CONFIG_X86_SMAP                         |kconfig|     y      |defconfig | self_protection  | FAIL: not found

The GCC_PLUGIN_RANDSTRUCT and GCC_PLUGIN_RANDSTRUCT_PERFORMANCE have changed now that CLANG has the feature. ( commit ). They are now nammed RANDSTRUCT_FULL and RANDSTRUCT_PERFORMANCE respectively.

At the moment they don't fail but the new entries should be added in the script I think.

 grep RANDSTRUCT ./.config
# CONFIG_RANDSTRUCT_NONE is not set
CONFIG_RANDSTRUCT_FULL=y
# CONFIG_RANDSTRUCT_PERFORMANCE is not set
CONFIG_RANDSTRUCT=y
CONFIG_GCC_PLUGIN_RANDSTRUCT=y

[a13xp0p0v]

Hi @Churam,

Thanks for your report!

I've improved the checks, please have a look.

[anthraxx]

maybe it would make sense to tag a new release after 🐱

[a13xp0p0v]

Hi @anthraxx,

I have a complex and time-consuming procedure for preparing the kconfig-hardened-check releases.

I’m planning to do this work for the next Linux kernel release.