October 8, 2022 8:18 PM, "kiasoc5" <kias...@disroot.org> wrote:
> AFAIK Guix is the only distro with a separate kernel (linux-libre-bpf) > that has the following turned on: > > CONFIG_BPF_JIT_ALWAYS_ON=y > CONFIG_BPF_JIT=y > > Why is this not the default in regular linux-libre? > I just did a quick internet search for the ebpf vulnerabilities. A few came up. Maybe it's a security feature. :) > --
