FS#73566 - [systemd] enable bpf-framework option
Attached to Project:
Arch Linux
Opened by Matthias Lisin (matthias.lisin) - Sunday, 30 January 2022, 18:25 GMT
Last edited by Christian Hesse (eworm) - Thursday, 22 December 2022, 21:13 GMT
Opened by Matthias Lisin (matthias.lisin) - Sunday, 30 January 2022, 18:25 GMT
Last edited by Christian Hesse (eworm) - Thursday, 22 December 2022, 21:13 GMT
|
Details
Description:
Some systemd directives like RestrictNetworkInterfaces are not available when compiled without option bpf-framework. Requires new make dependencies: bpf libbpf clang llvm See: https://github.com/systemd/systemd/blob/v250/meson.build#L1016 |
This task depends upon
Closed by Christian Hesse (eworm)
Thursday, 22 December 2022, 21:13 GMT
Reason for closing: Implemented
Additional comments about closing: systemd 252.2-4
Thursday, 22 December 2022, 21:13 GMT
Reason for closing: Implemented
Additional comments about closing: systemd 252.2-4
Does all this (or libbpf?) become a hard dependency then? Or can we list it as optional dependency?
At least I could not find anything linking against libbpf...
libbpf is an optional dependency (dlopen in libsystemd-shared-250.so, like libfido2 or qrencode)
Besides libbpf this requires dependencies at runtime (clang? llvm?) that should be listed in `optdepends`, no?
Experimental features:
* BPF programs can now be compiled with bpf-gcc (requires libbpf >= 1.0
and bpftool >= 7.0).
Would bpf-gcc be an alternative? Although Arch's GCC package does not seem to enable BPF support at all, currently.
systemd-run -t -p RestrictNetworkInterfaces="lo" ping archlinux.org
This should fail if bpf is functional.