ryan77627/guix
1
0
Fork 0
mirror of https://git.in.rschanz.org/ryan77627/guix.git synced 2024-11-07 15:36:20 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

gnu: %default-extra-linux-options: Ensure namespaces are enabled in all

Browse source 
linux-libre kernels.

The linux-libre kernels using defconfig may not have namespaces enabled, which
is needed for the default guix-daemon configuration in Guix System.

* gnu/packages/linux (%default-extra-linux-options): Enable CONFIG_NAMESPACES,
  CONFIG_UTS_NS, CONFIG_IPC_NS, CONFIG_USER_NS, CONFIG_PID_NS, and
  CONFIG_NET_NS.
This commit is contained in:
Vagrant Cascadian 2019-09-29 10:11:50 -07:00
parent 2d74d42a65
commit 18b3ba6ff2
No known key found for this signature in database
GPG key ID: DC518FC87F9716AA
1 changed files with 7 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
gnu/packages/linux.scm
View file

@ -564,6 +564,13 @@ (define* (kernel-config-veyron arch #:key variant)
(define %default-extra-linux-options
`(;; Some very mild hardening.
("CONFIG_SECURITY_DMESG_RESTRICT" . #t)
;; All kernels should have NAMESPACES options enabled
("CONFIG_NAMESPACES" . #t)
("CONFIG_UTS_NS" . #t)
("CONFIG_IPC_NS" . #t)
("CONFIG_USER_NS" . #t)
("CONFIG_PID_NS" . #t)
("CONFIG_NET_NS" . #t)
;; Modules required for initrd:
("CONFIG_NET_9P" . m)
("CONFIG_NET_9P_VIRTIO" . m)