faed498d0d
Commit 5a0b11a180 ("iommu/amd: Remove iommu_v2 module") removes the
config AMD_IOMMU_V2.
Remove the reference to this config in the x86 architecture-specific
hardening config fragment as well.
Signed-off-by: Lukas Bulwahn <lukas.bulwahn@gmail.com>
Reviewed-by: Vasant Hegde <vasant.hegde@amd.com>
Link: https://lore.kernel.org/r/20231012045040.22088-1-lukas.bulwahn@gmail.com
Signed-off-by: Kees Cook <keescook@chromium.org>
15 lines
394 B
Plaintext
15 lines
394 B
Plaintext
# Basic kernel hardening options (specific to x86)
|
|
|
|
# Modern libc no longer needs a fixed-position mapping in userspace, remove
|
|
# it as a possible target.
|
|
CONFIG_LEGACY_VSYSCALL_NONE=y
|
|
|
|
# Enable chip-specific IOMMU support.
|
|
CONFIG_INTEL_IOMMU=y
|
|
CONFIG_INTEL_IOMMU_DEFAULT_ON=y
|
|
CONFIG_INTEL_IOMMU_SVM=y
|
|
CONFIG_AMD_IOMMU=y
|
|
|
|
# Enable CET Shadow Stack for userspace.
|
|
CONFIG_X86_USER_SHADOW_STACK=y
|