Control: tags -1 + moreinfo Hi
On Thu, Nov 02, 2017 at 12:45:33PM -0700, Francois Marier wrote: > Source: linux-latest > Version: 86 > Severity: normal > > systemd complains in syslog about Debian kernels not supporting BPF/cgroup > firewalling: > > systemd[1]: File /lib/systemd/system/systemd-udevd.service:32 configures an > IP firewall (IPAddressDeny=any), but the local system does not support > BPF/cgroup based firewalling. > systemd[1]: File /lib/systemd/system/systemd-logind.service:35 configures > an IP firewall (IPAddressDeny=any), but the local system does not support > BPF/cgroup based firewalling. > systemd[1]: File /lib/systemd/system/systemd-journald.service:33 configures > an IP firewall (IPAddressDeny=any), but the local system does not support > BPF/cgroup based firewalling. > > According to this upstream bug: > > https://github.com/systemd/systemd/issues/7188 > > it's just a matter of adding the following to the kernel config: > > CONFIG_BPF_SYSCALL=y CONFIG_BPF_SYSCALL=y is already set since 4.2.5-1. Should that be CONFIG_CGROUP_BPF in addition (cf. #872560). Regards, Salvatore
