Code Review / AGL / meta-agl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: b3de7ee) | patch
linux: config: add systemd sandboxing fragment 97/28297/2
authorDenys Dmytriyenko <denys@konsulko.com>
Wed, 14 Dec 2022 22:05:29 +0000 (22:05 +0000)
committerJan-Simon Moeller <jsmoeller@linuxfoundation.org>
Fri, 16 Dec 2022 12:12:59 +0000 (12:12 +0000)
commit1bc5a0b03a11e649e739a32ff9bc1449053d9773
tree3f13cc146f9dfe0fd4fd905efa9c4472604936a0tree | snapshot
parentb3de7ee33730a74948d435dbbe7eb6c8af95b7e2commit | diff
linux: config: add systemd sandboxing fragment

Add a kernel config fragment that enables additional features needed for
systemd sandboxing support, using Classic BPF (Berkeley Packet Filter)
kernel framework. Eventually this will be extended with more advanced
features using eBPF (extended BPF), BTF (BPF Type Format) and LSM (Lunux
Security Module) frameworks.

Bug-AGL: SPEC-4627
Change-Id: I9ed21c654b2e0298be66073750dab6920e49b0c9
Signed-off-by: Denys Dmytriyenko <denys@konsulko.com>
Reviewed-on: https://gerrit.automotivelinux.org/gerrit/c/AGL/meta-agl/+/28297
Tested-by: Jenkins Job builder account
ci-image-build: Jenkins Job builder account
ci-image-boot-test: Jenkins Job builder account
Reviewed-by: Jan-Simon Moeller <jsmoeller@linuxfoundation.org>
meta-agl-core/recipes-kernel/linux/linux-agl-config.inc diff | blob | history
meta-agl-core/recipes-kernel/linux/linux/systemd-sandbox.cfg [new file with mode: 0644] blob
meta-agl layer (core AGL)