[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
01/01: gnu: %default-extra-linux-options: Ensure namespaces are enabled
|
From: |
guix-commits |
|
Subject: |
01/01: gnu: %default-extra-linux-options: Ensure namespaces are enabled in all linux-libre kernels. |
|
Date: |
Sun, 29 Sep 2019 18:11:03 -0400 (EDT) |
vagrantc pushed a commit to branch master
in repository guix.
commit 18b3ba6ff2f096193161742a06e4c1ae12600d0c
Author: Vagrant Cascadian <address@hidden>
Date: Sun Sep 29 10:11:50 2019 -0700
gnu: %default-extra-linux-options: Ensure namespaces are enabled in all
linux-libre kernels.
The linux-libre kernels using defconfig may not have namespaces enabled,
which
is needed for the default guix-daemon configuration in Guix System.
* gnu/packages/linux (%default-extra-linux-options): Enable
CONFIG_NAMESPACES,
CONFIG_UTS_NS, CONFIG_IPC_NS, CONFIG_USER_NS, CONFIG_PID_NS, and
CONFIG_NET_NS.
---
gnu/packages/linux.scm | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/gnu/packages/linux.scm b/gnu/packages/linux.scm
index 876eb00..fed8d8b 100644
--- a/gnu/packages/linux.scm
+++ b/gnu/packages/linux.scm
@@ -564,6 +564,13 @@ for ARCH and optionally VARIANT, or #f if there is no such
configuration."
(define %default-extra-linux-options
`(;; Some very mild hardening.
("CONFIG_SECURITY_DMESG_RESTRICT" . #t)
+ ;; All kernels should have NAMESPACES options enabled
+ ("CONFIG_NAMESPACES" . #t)
+ ("CONFIG_UTS_NS" . #t)
+ ("CONFIG_IPC_NS" . #t)
+ ("CONFIG_USER_NS" . #t)
+ ("CONFIG_PID_NS" . #t)
+ ("CONFIG_NET_NS" . #t)
;; Modules required for initrd:
("CONFIG_NET_9P" . m)
("CONFIG_NET_9P_VIRTIO" . m)