Kernel: Enable YAMA support

author Peter Müller <peter.mueller@ipfire.org>

Sat, 11 Jun 2022 18:53:10 +0000 (18:53 +0000)

committer Peter Müller <peter.mueller@ipfire.org>

Mon, 13 Jun 2022 15:39:08 +0000 (15:39 +0000)
author Peter Müller <peter.mueller@ipfire.org>
Sat, 11 Jun 2022 18:53:10 +0000 (18:53 +0000)
committer Peter Müller <peter.mueller@ipfire.org>
Mon, 13 Jun 2022 15:39:08 +0000 (15:39 +0000)
diff --git a/config/kernel/kernel.config.aarch64-ipfire b/config/kernel/kernel.config.aarch64-ipfire

index 6dfeae59559316aa403794a3855368abc01cb2f0..7e63b77ca005928b3dfb746b1f89b9e605b1f714 100644 (file)
--- a/config/kernel/kernel.config.aarch64-ipfire
+++ b/config/kernel/kernel.config.aarch64-ipfire
@@ -7555,7 +7555,7 @@ CONFIG_FORTIFY_SOURCE=y
  # CONFIG_SECURITY_TOMOYO is not set
  # CONFIG_SECURITY_APPARMOR is not set
  # CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
  # CONFIG_SECURITY_SAFESETID is not set
  CONFIG_SECURITY_LOCKDOWN_LSM=y
  CONFIG_SECURITY_LOCKDOWN_LSM_EARLY=y
diff --git a/config/kernel/kernel.config.armv6l-ipfire b/config/kernel/kernel.config.armv6l-ipfire

index 1bb745a8739ee946846f165764dfa494c566373c..1b6440b11921378094c68f2dfb000ca66156f309 100644 (file)
--- a/config/kernel/kernel.config.armv6l-ipfire
+++ b/config/kernel/kernel.config.armv6l-ipfire
@@ -7561,7 +7561,7 @@ CONFIG_HARDENED_USERCOPY_PAGESPAN=y
  # CONFIG_SECURITY_TOMOYO is not set
  # CONFIG_SECURITY_APPARMOR is not set
  # CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
  # CONFIG_SECURITY_SAFESETID is not set
  CONFIG_SECURITY_LOCKDOWN_LSM=y
  CONFIG_SECURITY_LOCKDOWN_LSM_EARLY=y
diff --git a/config/kernel/kernel.config.riscv64-ipfire b/config/kernel/kernel.config.riscv64-ipfire

index 2d1fdbd285d0fcec77821a467ef593ffa35131a5..2d6bb3a2ccc933c0a35f3e0511933723f915651c 100644 (file)
--- a/config/kernel/kernel.config.riscv64-ipfire
+++ b/config/kernel/kernel.config.riscv64-ipfire
@@ -6193,7 +6193,7 @@ CONFIG_FORTIFY_SOURCE=y
  # CONFIG_SECURITY_TOMOYO is not set
  # CONFIG_SECURITY_APPARMOR is not set
  # CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
  # CONFIG_SECURITY_SAFESETID is not set
  CONFIG_SECURITY_LOCKDOWN_LSM=y
  CONFIG_SECURITY_LOCKDOWN_LSM_EARLY=y
diff --git a/config/kernel/kernel.config.x86_64-ipfire b/config/kernel/kernel.config.x86_64-ipfire

index b84698235c88c188e744a9bfbd087886c5ef44e2..0efe14c4109fd5a147fada230a638256dd180938 100644 (file)
--- a/config/kernel/kernel.config.x86_64-ipfire
+++ b/config/kernel/kernel.config.x86_64-ipfire
@@ -6971,7 +6971,7 @@ CONFIG_FORTIFY_SOURCE=y
  # CONFIG_SECURITY_TOMOYO is not set
  # CONFIG_SECURITY_APPARMOR is not set
  # CONFIG_SECURITY_LOADPIN is not set
-# CONFIG_SECURITY_YAMA is not set
+CONFIG_SECURITY_YAMA=y
  # CONFIG_SECURITY_SAFESETID is not set
  CONFIG_SECURITY_LOCKDOWN_LSM=y
  CONFIG_SECURITY_LOCKDOWN_LSM_EARLY=y
author	Peter Müller <peter.mueller@ipfire.org>
	Sat, 11 Jun 2022 18:53:10 +0000 (18:53 +0000)
committer	Peter Müller <peter.mueller@ipfire.org>
	Mon, 13 Jun 2022 15:39:08 +0000 (15:39 +0000)
config/kernel/kernel.config.aarch64-ipfire		patch \| blob \| blame \| history
config/kernel/kernel.config.armv6l-ipfire		patch \| blob \| blame \| history
config/kernel/kernel.config.riscv64-ipfire		patch \| blob \| blame \| history
config/kernel/kernel.config.x86_64-ipfire		patch \| blob \| blame \| history