gnu: linux-libre: Disable unprivileged BPF by default.
* gnu/packages/aux-files/linux-libre/5.15-arm.conf: Set CONFIG_BPF_UNPRIV_DEFAULT_OFF=y. * gnu/packages/aux-files/linux-libre/5.15-arm64.conf: Likewise. * gnu/packages/aux-files/linux-libre/5.15-i686.conf: Likewise. * gnu/packages/aux-files/linux-libre/5.15-x86_64.conf: Likewise. * gnu/packages/aux-files/linux-libre/6.1-arm.conf: Likewise. * gnu/packages/aux-files/linux-libre/6.1-arm64.conf: Likewise. * gnu/packages/aux-files/linux-libre/6.1-i686.conf: Likewise. * gnu/packages/aux-files/linux-libre/6.1-x86_64.conf: Likewise.master
Tobias Geerinckx-Rice
parent
77aff2b5d2
commit
017f1779e9
|
|
@ -101,7 +101,7 @@ CONFIG_HAVE_EBPF_JIT=y
|
|||
CONFIG_BPF_SYSCALL=y
|
||||
CONFIG_BPF_JIT=y
|
||||
# CONFIG_BPF_JIT_ALWAYS_ON is not set
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
CONFIG_BPF_LSM=y
|
||||
# end of BPF subsystem
|
||||
|
|
|
|||
|
|
@ -96,7 +96,7 @@ CONFIG_BPF_SYSCALL=y
|
|||
CONFIG_BPF_JIT=y
|
||||
# CONFIG_BPF_JIT_ALWAYS_ON is not set
|
||||
CONFIG_BPF_JIT_DEFAULT_ON=y
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
CONFIG_BPF_LSM=y
|
||||
# end of BPF subsystem
|
||||
|
|
|
|||
|
|
@ -108,7 +108,7 @@ CONFIG_HAVE_EBPF_JIT=y
|
|||
#
|
||||
CONFIG_BPF_SYSCALL=y
|
||||
# CONFIG_BPF_JIT is not set
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
# end of BPF subsystem
|
||||
|
||||
|
|
|
|||
|
|
@ -112,7 +112,7 @@ CONFIG_ARCH_WANT_DEFAULT_BPF_JIT=y
|
|||
#
|
||||
CONFIG_BPF_SYSCALL=y
|
||||
# CONFIG_BPF_JIT is not set
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
# end of BPF subsystem
|
||||
|
||||
|
|
|
|||
|
|
@ -103,7 +103,7 @@ CONFIG_HAVE_EBPF_JIT=y
|
|||
CONFIG_BPF_SYSCALL=y
|
||||
CONFIG_BPF_JIT=y
|
||||
# CONFIG_BPF_JIT_ALWAYS_ON is not set
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
CONFIG_BPF_LSM=y
|
||||
# end of BPF subsystem
|
||||
|
|
|
|||
|
|
@ -112,7 +112,7 @@ CONFIG_BPF_SYSCALL=y
|
|||
CONFIG_BPF_JIT=y
|
||||
# CONFIG_BPF_JIT_ALWAYS_ON is not set
|
||||
CONFIG_BPF_JIT_DEFAULT_ON=y
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
CONFIG_BPF_LSM=y
|
||||
# end of BPF subsystem
|
||||
|
|
|
|||
|
|
@ -111,7 +111,7 @@ CONFIG_HAVE_EBPF_JIT=y
|
|||
#
|
||||
CONFIG_BPF_SYSCALL=y
|
||||
# CONFIG_BPF_JIT is not set
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
# end of BPF subsystem
|
||||
|
||||
|
|
|
|||
|
|
@ -116,7 +116,7 @@ CONFIG_ARCH_WANT_DEFAULT_BPF_JIT=y
|
|||
#
|
||||
CONFIG_BPF_SYSCALL=y
|
||||
# CONFIG_BPF_JIT is not set
|
||||
# CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
|
||||
CONFIG_BPF_UNPRIV_DEFAULT_OFF=y
|
||||
# CONFIG_BPF_PRELOAD is not set
|
||||
# end of BPF subsystem
|
||||
|
||||
|
|
|
|||
Reference in New Issue