Commit message (Collapse) | Author | Lines | ||
---|---|---|---|---|
2022-06-04 | fragments: Remove reference to CONFIG_UNUSED_SYMBOLS | Wolfgang Müller | -2/+0 | |
This option does no longer exist in the 5.15 branch. | ||||
2022-06-04 | fragments: Add fragment for ZFS | Wolfgang Müller | -0/+1 | |
ZFS requires CONFIG_ZLIB_DEFLATE which is selected by CONFIG_CRYPTO_DEFLATE. | ||||
2022-06-04 | fragments: Add requisite option for KSP | Wolfgang Müller | -0/+1 | |
2021-08-13 | fragments: Update to latest KSP recommendations | Wolfgang Müller | -0/+5 | |
The Gentoo KSP recommendations have changed slightly again, now requiring three different settings instead of just one. Additionally, in order to enable KSP at all, CONFIG_MODIFY_LDT_SYSCALL needs to be unset. | ||||
2021-08-13 | fragments: Enable CONFIG_SECURITY | Wolfgang Müller | -0/+2 | |
An upcoming commit updates to the latest KSP recommendations and requires this particular setting as a direct dependency for CONFIG_SECURITY_YAMA. | ||||
2021-08-13 | fragments: Use expert mode by default | Wolfgang Müller | -0/+2 | |
An upcoming commit which updates to the latest KSP recommendations requires expert mode for one setting. Enable it here. | ||||
2021-07-20 | fragments: Remove obsoleted KSP switch | Wolfgang Müller | -1/+0 | |
The newer versions of sys-kernel/gentoo-sources do not have this switch anymore, instead relying only on the architecture-specific switches. Remove it. | ||||
2021-07-03 | fragments: Enable GENTOO_KERNEL_SELF_PROTECTION | Wolfgang Müller | -0/+3 | |
This setting pulls in a set of recommended settings [1] from the Kernel Self Protection Project. We are pretty sure that we exhaustively set all these manually already, but since Gentoo upstream provides this option, make use of it too. [1] https://kernsec.org/wiki/index.php/Kernel_Self_Protection_Project/Recommended_Settings | ||||
2021-04-16 | fragments: Add fragment enabling support for systemd | Wolfgang Müller | -0/+1 | |
This fragment relies on the Gentoo patchsets for the Linux kernel, as the config option is not an upstream one. | ||||
2021-03-06 | fragments: Enable CONFIG_BT_HS by default | Wolfgang Müller | -0/+1 | |
This will support high-speed bluetooth interfaces. | ||||
2021-03-06 | fragments: Enable CONFIG_RAS | Wolfgang Müller | -0/+1 | |
This is needed for CONFIG_EDAC* but is not enabled by default upstream. | ||||
2021-03-06 | fragments: Remove superfluous options for 5.10 | Wolfgang Müller | -3/+0 | |
These options have either been merged into others or enabled unconditionally. | ||||
2020-10-25 | fragments: Add fragment with the PL2303 serial-to-USB driver | Wynn Wolf Arbor | -0/+2 | |
2020-08-28 | fragments: Remove AUDIT_WATCH and AUDIT_TREE from security/audit | Wynn Wolf Arbor | -2/+0 | |
These two options have been replaced [1] by CONFIG_AUDITSYSCALL. [1] https://patchwork.kernel.org/patch/10686725/ | ||||
2020-08-07 | Remove CONFIG_CIFS_ACL | Wynn Wolf Arbor | -1/+0 | |
This option is now contained in CIFS_POSIX | ||||
2020-08-07 | fragments: Add fragment enabling wireguard support | Wynn Wolf Arbor | -0/+1 | |
2020-02-29 | Add fragment that enables filesystem encryption | Wynn Wolf Arbor | -0/+1 | |
2020-02-29 | Add new netfilter/nftables options | Wynn Wolf Arbor | -0/+3 | |
2020-02-29 | Enable PCI by default | Wynn Wolf Arbor | -0/+1 | |
This option was apparently changed to default to no on the 5.4 series | ||||
2020-02-29 | Improve security by disabling vsyscall table for legacy apps | Wynn Wolf Arbor | -0/+3 | |
2020-02-29 | Remove deprecated kernel options | Wynn Wolf Arbor | -22/+0 | |
2020-02-29 | Allow multiple routing tables for IPv6 | Wynn Wolf Arbor | -0/+2 | |