From e3b813c39dd55111519a16ecc5177c69e5d22d3c Mon Sep 17 00:00:00 2001
From: Nils Freydank <nils.freydank@posteo.de>
Date: Thu, 17 Jun 2021 13:01:04 +0200
Subject: [PATCH] aptenodytes: Enable protection sets via genpatches knobs

---
 aptenodytes-config | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/aptenodytes-config b/aptenodytes-config
index e13c65b..7a963ce 100644
--- a/aptenodytes-config
+++ b/aptenodytes-config
@@ -2834,8 +2834,6 @@ CONFIG_SECURITYFS=y
 CONFIG_PAGE_TABLE_ISOLATION=y
 CONFIG_HAVE_HARDENED_USERCOPY_ALLOCATOR=y
 CONFIG_HARDENED_USERCOPY=y
-CONFIG_HARDENED_USERCOPY_FALLBACK=y
-CONFIG_HARDENED_USERCOPY_PAGESPAN=y
 CONFIG_FORTIFY_SOURCE=y
 # CONFIG_STATIC_USERMODEHELPER is not set
 CONFIG_DEFAULT_SECURITY_DAC=y
@@ -3435,12 +3433,12 @@ CONFIG_GENTOO_LINUX_INIT_SCRIPT=y
 #
 # Enable Kernel Self Protection Project Recommendations
 #
-# CONFIG_GENTOO_KERNEL_SELF_PROTECTION is not set
+CONFIG_GENTOO_KERNEL_SELF_PROTECTION=y
 
 #
 # Architecture Specific Self Protection Project Recommendations
 #
-# CONFIG_GENTOO_KERNEL_SELF_PROTECTION_X86_64 is not set
+CONFIG_GENTOO_KERNEL_SELF_PROTECTION_X86_64=y
 # end of Architecture Specific Self Protection Project Recommendations
 # end of Enable Kernel Self Protection Project Recommendations
 # end of Gentoo Linux