summaryrefslogtreecommitdiffstats
path: root/fragments (unfollow)
Commit message (Collapse)AuthorLines
2022-07-10fragments: Remove reference to STRUCTLEAK_BYREFWolfgang Müller-1/+0
This option no longer exists in versions >= 5.18.7.
2022-07-10fragments: Enable NVMe temperatures in hwmonWolfgang Müller-0/+1
This exposes NVMe drive temperatures to the hwmon interface, making them accessible through lm-sensors.
2022-07-10fragments: Enable sensors for drive temperaturesWolfgang Müller-0/+2
These are useful to show with lm-sensors. No more need to show temperatures using smartctl.
2022-07-10fragments: Add fragment for albatrossWolfgang Müller-0/+3
This includes the necessary firmware settings and a specific chipset configuration toggle.
2022-07-10fragments: Add fragment for newer AMD GPUsWolfgang Müller-0/+7
This should work fine on Navi or newer GPUs. The Gentoo Wiki [1] recommends also setting the MEMORY_*, ZONE_* and DEVICE_* settings, so we have them enabled here. [1] https://wiki.gentoo.org/wiki/AMDGPU#Kernel
2022-07-10fragments: Add fragment for NVMe drivesWolfgang Müller-0/+2
2022-07-10fragments: Add fragment for the Intel I225 Ethernet ControllerWolfgang Müller-0/+1
2022-07-10fragments: Add fragment for AMD Zen 3 CPUsWolfgang Müller-0/+1
2022-07-10fragments: Remove obsolete settings from net/nftablesWolfgang Müller-3/+0
These are gone with the 5.17 series.
2022-07-10fragments: Enable AMD-specific support for cpu/amdWolfgang Müller-1/+1
We can safely choose the MK8 setting here instead of falling back to a generic CPU configuration.
2022-07-10fragments: Enable the EFI framebuffer console for EFI systemsWolfgang Müller-0/+5
Support for this was lacking before, making EFI systems unusable after boot since there was no output on the screen.
2022-07-10fragments: Enable core scheduling for SMTWolfgang Müller-0/+2
This should be safe to have enabled (but unused) and gives us an extra layer of potential mitigation of SMT side channels.
2022-07-10fragments: Enable X2APIC supportWolfgang Müller-0/+3
This should improve handling of very large core counts and should be safe to enable globally.
2022-07-10fragments: Add fragments for base ACPI settingsWolfgang Müller-0/+1
For now this enables the processor aggregator, which should reduce power consumption when supported by the ACPI device.
2022-07-10fragments: Add fragment for task accountingWolfgang Müller-0/+4
This is needed for application such as htop and doesn't hurt to be included in the base group.
2022-06-04fragments: Enable CONFIG_BINFMT_MISCWolfgang Müller-0/+2
2022-06-04fragments: Add CONFIG_JUMP_LABEL to base/commonWolfgang Müller-0/+2
This seems to be a harmless optimization.
2022-06-04fragments: Add fragment for NTFS3Wolfgang Müller-0/+2
This fragment add support for NTFS versions up to 3.1 [1] [1] https://www.kernel.org/doc/html/latest/filesystems/ntfs3.html
2022-06-04fragments: Remove CONFIG_SND_HDA_PREALLOC_SIZE=2048Wolfgang Müller-3/+0
Starting with kernels in the 5.15 branch, this setting is no longer changeable from its value of '0' on x86 systems [1]. The pulseaudio ebuild still recommends setting this value, which is possibly misleading. See [2]. [1] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/sound/hda/Kconfig?id=c31427d0d21e198c74d5d92082c4b8194b257f82 [2] https://bugs.gentoo.org/show_bug.cgi?id=716252
2022-06-04fragments: Remove CONFIG_NF_LOG_BRIDGE=yWolfgang Müller-1/+0
This particular option was merged into NF_LOG_SYSLOG in kernel commit 77ccee96a674 (netfilter: nf_log_bridge: merge with nf_log_syslog, 2021-03-25)
2022-06-04fragments: Remove reference to CONFIG_UNUSED_SYMBOLSWolfgang Müller-2/+0
This option does no longer exist in the 5.15 branch.
2022-06-04fragments: Add fragment for ZFSWolfgang Müller-0/+1
ZFS requires CONFIG_ZLIB_DEFLATE which is selected by CONFIG_CRYPTO_DEFLATE.
2022-06-04fragments: Add requisite option for KSPWolfgang Müller-0/+1
2021-08-13fragments: Update to latest KSP recommendationsWolfgang Müller-0/+5
The Gentoo KSP recommendations have changed slightly again, now requiring three different settings instead of just one. Additionally, in order to enable KSP at all, CONFIG_MODIFY_LDT_SYSCALL needs to be unset.
2021-08-13fragments: Enable CONFIG_SECURITYWolfgang Müller-0/+2
An upcoming commit updates to the latest KSP recommendations and requires this particular setting as a direct dependency for CONFIG_SECURITY_YAMA.
2021-08-13fragments: Use expert mode by defaultWolfgang Müller-0/+2
An upcoming commit which updates to the latest KSP recommendations requires expert mode for one setting. Enable it here.
2021-07-20fragments: Remove obsoleted KSP switchWolfgang Müller-1/+0
The newer versions of sys-kernel/gentoo-sources do not have this switch anymore, instead relying only on the architecture-specific switches. Remove it.
2021-07-03fragments: Enable GENTOO_KERNEL_SELF_PROTECTIONWolfgang Müller-0/+3
This setting pulls in a set of recommended settings [1] from the Kernel Self Protection Project. We are pretty sure that we exhaustively set all these manually already, but since Gentoo upstream provides this option, make use of it too. [1] https://kernsec.org/wiki/index.php/Kernel_Self_Protection_Project/Recommended_Settings
2021-04-16fragments: Add fragment enabling support for systemdWolfgang Müller-0/+1
This fragment relies on the Gentoo patchsets for the Linux kernel, as the config option is not an upstream one.
2021-03-06fragments: Enable CONFIG_BT_HS by defaultWolfgang Müller-0/+1
This will support high-speed bluetooth interfaces.
2021-03-06fragments: Enable CONFIG_RASWolfgang Müller-0/+1
This is needed for CONFIG_EDAC* but is not enabled by default upstream.
2021-03-06fragments: Remove superfluous options for 5.10Wolfgang Müller-3/+0
These options have either been merged into others or enabled unconditionally.
2020-10-25fragments: Add fragment with the PL2303 serial-to-USB driverWynn Wolf Arbor-0/+2
2020-08-28fragments: Remove AUDIT_WATCH and AUDIT_TREE from security/auditWynn Wolf Arbor-2/+0
These two options have been replaced [1] by CONFIG_AUDITSYSCALL. [1] https://patchwork.kernel.org/patch/10686725/
2020-08-07Remove CONFIG_CIFS_ACLWynn Wolf Arbor-1/+0
This option is now contained in CIFS_POSIX
2020-08-07fragments: Add fragment enabling wireguard supportWynn Wolf Arbor-0/+1
2020-02-29Add fragment that enables filesystem encryptionWynn Wolf Arbor-0/+1
2020-02-29Add new netfilter/nftables optionsWynn Wolf Arbor-0/+3
2020-02-29Enable PCI by defaultWynn Wolf Arbor-0/+1
This option was apparently changed to default to no on the 5.4 series
2020-02-29Improve security by disabling vsyscall table for legacy appsWynn Wolf Arbor-0/+3
2020-02-29Remove deprecated kernel optionsWynn Wolf Arbor-22/+0
2020-02-29Allow multiple routing tables for IPv6Wynn Wolf Arbor-0/+2