bcoles

> KSPP recommendations in the beginning contain a lot of settings that are universal for all microarchitectures. However, not all of them are supported on RISC-V. > > So we...

> Could you please rebase this branch onto the current master and give me an ability to add commits to this branch? Rebased. You should have permissions.

> Arch detection from sysctl also works fine: > > ``` > $ ./bin/kernel-hardening-checker -s riscv-sysctl.out > [+] Sysctl output file to check: riscv-sysctl.out > [+] Detected microarchitecture: RISCV (riscv64)...

> So we can revisit the `kspp` and other checks. I do not have time to work on this feature for the foreseeable future.

This PR is ready for testing. Tests are passing, with the exception of an unrelated PHP-related test which failed after 15+ minutes. # Hardware [Milk-V](https://milkv.io/) and [Pine64](https://pine64.org/) sell cheap (US$10)...

> @dwelch-r7, if you happen to create an emulated RISC-V Ubuntu VM, could I talk you into installing kernel 5.19 and testing #19460 ? 😄 Alternatively, I'll build it and...

>  > > Reboot worked as elevated user. `reboot` is a privileged sycall. `strace` should show `Operation not permitted`: ``` $ /home/user/qemu/build/qemu-riscv64 -strace ./reboot 15265 reboot(4276215469,672274793,19088743,0,0,0) = -1 errno=1...

I've also added Linux Execute Command 32-bit/64-bit RISC-V LE payloads. @bwatters-r7 These payloads should be useful for the Overlay exploit. Both payloads were tested successfully in an emulator. The 64-bit...

> I tried to get QEMU running a 32 bit linux system but I never quite got it working,[...] > if you have a guide you followed to set that...

Here are my QEMU RISC-V 64-bit Linux test systems: ``` debian-20221211-convert_riscv64-virt debian-20240128-convert_riscv64-virt Fedora-Minimal-Rawhide-20200108.n.0-riscv64 ubuntu-22.04.1-live-server-riscv64 ``` Here are the `qemu`recipes. With the exception of Ubuntu, these use pre-built images. If I...