mirror of
https://github.com/kata-containers/kata-containers.git
synced 2025-04-27 11:31:05 +00:00
f563f0d3fc
There are lots of configs removed from latest kernel. Update them here for convenience of next kernel upgrade. Remove CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE [1] Remove CONFIG_IP_NF_TARGET_CLUSTERIP [2] Remove CONFIG_NET_SCH_CBQ [3] Remove CONFIG_AUTOFS4_FS [4] Remove CONFIG_EMBEDDED [5] Remove CONFIG_ARCH_RANDOM & CONFIG_RANDOM_TRUST_CPU [6] [1] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v6.6&id=a7e4676e8e2cb158a4d24123de778087955e1b36 [2] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v6.6&id=9db5d918e2c07fa09fab18bc7addf3408da0c76f [3] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v6.6&id=051d442098421c28c7951625652f61b1e15c4bd5 [4] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v6.6&id=1f2190d6b7112d22d3f8dfeca16a2f6a2f51444e [5] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v6.6&id=ef815d2cba782e96b9aad9483523d474ed41c62a [6] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v6.2&id=b9b01a5625b5a9e9d96d14d4a813a54e8a124f4b Apart from the removals, CONFIG_CPU_MITIGATIONS is now a dependency for CONFIG_RETPOLINE (which has been renamed to CONFIG_MITIGATION_RETPOLINE) and CONFIG_PAGE_TABLE_ISOLATION (which has been renamed to CONFIG_MITIGATION_PAGE_TABLE_ISOLATION). I've added that to the whitelist because we still build older versions of the kernel that do not have that dependency. Fixes: #8408 Signed-off-by: Jianyong Wu <jianyong.wu@arm.com> Signed-off-by: Fabiano Fidêncio <fabiano@fidencio.org> Signed-off-by: Hyounggyu Choi <Hyounggyu.Choi@ibm.com>
30 lines
774 B
Plaintext
30 lines
774 B
Plaintext
# Add cgroup support. Needed both for the agent to place the workload into, and
|
|
# also used/looked for by systemd rootfs.
|
|
CONFIG_CGROUPS=y
|
|
CONFIG_MEMCG=y
|
|
CONFIG_MEMCG_V1=y
|
|
CONFIG_BLK_CGROUP=y
|
|
CONFIG_CGROUP_WRITEBACK=y
|
|
CONFIG_CGROUP_SCHED=y
|
|
CONFIG_FAIR_GROUP_SCHED=y
|
|
CONFIG_CFS_BANDWIDTH=y
|
|
CONFIG_CGROUP_PIDS=y
|
|
CONFIG_CGROUP_FREEZER=y
|
|
CONFIG_CPUSETS=y
|
|
CONFIG_CPUSETS_V1=y
|
|
CONFIG_CGROUP_DEVICE=y
|
|
CONFIG_CGROUP_CPUACCT=y
|
|
CONFIG_CGROUP_HUGETLB=y
|
|
CONFIG_CGROUP_PERF=y
|
|
CONFIG_SOCK_CGROUP_DATA=y
|
|
|
|
# We have to enable SWAP CG, as runc/libcontainer in the agent currently fails
|
|
# to write to it, even though it does some checks to see if swap is enabled.
|
|
CONFIG_SWAP=y
|
|
CONFIG_MEMCG_SWAP=y
|
|
CONFIG_MEMCG_SWAP_ENABLED=y
|
|
|
|
# Needed for cgroups v2
|
|
CONFIG_BPF_SYSCALL=y
|
|
CONFIG_CGROUP_BPF=y
|