@@ -385,7 +385,6 @@ sata_uli
sata_via
sata_vsc
seqiv
-sha256_generic
spl
splat
sunrpc
@@ -449,7 +449,7 @@ CONFIG_CRYPTO_SEQIV=m
CONFIG_CRYPTO_SHA1=y
# CONFIG_CRYPTO_SHA1_MB is not set
# CONFIG_CRYPTO_SHA1_SSSE3 is not set
-CONFIG_CRYPTO_SHA256=m
+CONFIG_CRYPTO_SHA256=y
# CONFIG_CRYPTO_SHA256_SSSE3 is not set
CONFIG_CRYPTO_SHA512=y
# CONFIG_CRYPTO_SHA512_SSSE3 is not set
@@ -604,6 +604,7 @@ CONFIG_EFI_ESRT=y
# CONFIG_EFI_FAKE_MEMMAP is not set
CONFIG_EFI_PARTITION=y
# CONFIG_EFI_PGT_DUMP is not set
+# CONFIG_EFI_RUNTIME_MAP is not set
CONFIG_EFI_RUNTIME_WRAPPERS=y
# CONFIG_EFI_SECURE_BOOT_SIG_ENFORCE is not set
CONFIG_EFI_SIGNATURE_LIST_PARSER=y
@@ -1100,7 +1101,10 @@ CONFIG_KERNEL_GZIP=y
# CONFIG_KERNEL_LZO is not set
# CONFIG_KERNEL_XZ is not set
CONFIG_KERNFS=y
-# CONFIG_KEXEC is not set
+CONFIG_KEXEC=y
+CONFIG_KEXEC_CORE=y
+CONFIG_KEXEC_FILE=y
+# CONFIG_KEXEC_VERIFY_SIG is not set
CONFIG_KEYS=y
CONFIG_KEYS_COMPAT=y
# CONFIG_KGDB is not set
BugLink: https://bugs.launchpad.net/bugs/1799791 The enablement of these options could allow for some creative applications of linux-kvm. Set CONFIG_CRYPTO_SHA256=y instead of 'm' because KEXEC_FILE depends on it being 'y' otherwise it precludes KEXEC_FILE. This also makes it more consistent with Bionic as Bionic has it set to 'y' as well. Finally, remove "sha256_generic" from the modules list as it is now "built-in" after being set ='y' Signed-off-by: Connor Kuehl <connor.kuehl@canonical.com> --- debian.kvm/abi/4.4.0-1044.50/amd64/kvm.modules | 1 - debian.kvm/config/config.common.ubuntu | 8 ++++++-- 2 files changed, 6 insertions(+), 3 deletions(-)