systemd: add PACKAGECONFIG for bpf-framework - linux/poky.git

diff options

author	Johannes Schneider <johannes.schneider@leica-geosystems.com>	2024-06-20 13:51:25 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2024-06-25 11:50:58 +0100
commit	182e599dbce552a6f0b3d014854fb570d74adc5d (patch)
tree	29e9004674749c11758ea9d57c281f5b437644e3 /scripts/lib/checklayer/case.py
parent	23dacdb593ff4731b9757e45ab64ebc2872cb33f (diff)
download	poky-182e599dbce552a6f0b3d014854fb570d74adc5d.tar.gz

systemd: add PACKAGECONFIG for bpf-framework

The bpf-framework is used to pre-compile eBPFs that required for the systemd.resource-control features RestrictFileSystems=[1] and RestrictNetworkInterfaces=[2] to work. Apart from 'clang-native' to compile the eBPFs, the required kernel switches are described in [3]. Link: https://www.freedesktop.org/software/systemd/man/latest/systemd.resource-control.html#RestrictFileSystems= Link: https://www.freedesktop.org/software/systemd/man/latest/systemd.resource-control.html#RestrictNetworkInterfaces= Link: https://kinvolk.io/blog/2021/04/extending-systemd-security-features-with-ebpf/ (From OE-Core rev: 6f90320bf3028a67d1fd444dfaa62f3888066ea4) Signed-off-by: Johannes Schneider <johannes.schneider@leica-geosystems.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/checklayer/case.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: