Git-Mirrors/graphene-os-server-infrastructure
1
0
Fork 0
mirror of https://github.com/GrapheneOS/infrastructure.git synced 2024-10-01 00:55:42 -04:00
Code Issues Packages Projects Releases Wiki Activity

disable 32-bit support via kernel line

Browse Source 
This is now supported in mainline and will be available in Linux 6.7. It
will be a while before we have it in production due to using the latest
LTS branch, but it might as well be set up in advance.

We currently have SystemCallArchitectures=native in the systemd
configuration to disallow 32-bit system calls via seccomp-bpf.
This commit is contained in:
Daniel Micay 2024-01-03 11:01:36 -05:00
parent dd9d6ff2a5
commit d44a316624
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
grub
View File

@ -4,7 +4,7 @@ GRUB_DEFAULT=0
GRUB_TIMEOUT=0
GRUB_DISTRIBUTOR="Arch"
GRUB_CMDLINE_LINUX_DEFAULT="loglevel=3 quiet"
GRUB_CMDLINE_LINUX="slab_nomerge init_on_free=1 lockdown=confidentiality vsyscall=none preempt=none console=ttyS0 "
GRUB_CMDLINE_LINUX="slab_nomerge init_on_free=1 lockdown=confidentiality vsyscall=none ia32_emulation=0 preempt=none console=ttyS0 "
# Preload both GPT and MBR modules so that they are not missed
GRUB_PRELOAD_MODULES="part_gpt part_msdos"