NEWS: document BPF delegate options

author Matteo Croce <teknoraver@meta.com>

Thu, 24 Jul 2025 12:43:23 +0000 (14:43 +0200)

committer Yu Watanabe <watanabe.yu+github@gmail.com>

Thu, 24 Jul 2025 18:06:36 +0000 (03:06 +0900)
author Matteo Croce <teknoraver@meta.com>
Thu, 24 Jul 2025 12:43:23 +0000 (14:43 +0200)
committer Yu Watanabe <watanabe.yu+github@gmail.com>
Thu, 24 Jul 2025 18:06:36 +0000 (03:06 +0900)
diff --git a/NEWS b/NEWS

index c35d38c99b106d939e206fe93ceee45591db0aed..8286a3a5bbe0b3943e382b68efcf88771dfb1e26 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -366,6 +366,12 @@ CHANGES WITH 258 in spe:
          * A new PrivateBPF= switch has been added for unit files, which may be
            used to mount a private bpffs instance for the unit's processes.
  
+        * Four new options added to mount the bpffs with the delegate options:
+          BPFDelegateCommands= BPFDelegateMaps=
+          BPFDelegatePrograms= BPFDelegateAttachments=
+          These allow an unprivileged container to use some BPF functionalities.
+          See also https://lwn.net/Articles/947173/
+
          * New user manager services systemd-nspawn@.service and
            systemd-vmspawn@.service and a machines.target unit to manage them
            have been added.
author	Matteo Croce <teknoraver@meta.com>
	Thu, 24 Jul 2025 12:43:23 +0000 (14:43 +0200)
committer	Yu Watanabe <watanabe.yu+github@gmail.com>
	Thu, 24 Jul 2025 18:06:36 +0000 (03:06 +0900)