Commit graph

3083 commits

Author SHA1 Message Date
Tim Steinbach
ccd79f25b1
linux: 4.9.178 -> 4.9.179 2019-05-26 10:00:21 -04:00
Tim Steinbach
e988d510ed
linux: 4.19.45 -> 4.19.46 2019-05-26 10:00:00 -04:00
Tim Steinbach
282dce1d0c
linux: 4.14.121 -> 4.14.122 2019-05-26 09:59:27 -04:00
Alyssa Ross
bed7e5aaf2
linux_libre-latest: fix build 2019-05-25 00:53:44 +00:00
Tim Steinbach
c002312f76
linux: 5.1.3 -> 5.1.4 2019-05-22 09:04:12 -04:00
Tim Steinbach
8966d899fc
linux: 5.0.17 -> 5.0.18 2019-05-22 09:04:12 -04:00
Tim Steinbach
6b389fb55c
linux: 4.9.177 -> 4.9.178 2019-05-22 09:04:12 -04:00
Tim Steinbach
6ac9131fab
linux: 4.19.44 -> 4.19.45 2019-05-22 09:04:12 -04:00
Tim Steinbach
5a00925d82
linux: 4.14.120 -> 4.14.121 2019-05-22 09:04:09 -04:00
Austin Seipp
c117aa3ec3
linux_testing (5.2.0-rc1): fix build, include 'cpio' in nativeBuildInputs
81d4e65891 automatically bumped
linux_testing to 5.2.0-rc1, but the 5.2 merge window included a new
feature adding compressed headers for compiled kernels into
/proc/kheaders.tar.xz

See 43d8ce9d65

This feature requires 'cpio' to now be included in nativeBuildInputs
since it's used to construct that archive.

This wasn't caught by Hydra since we turn off build of linuxPackages,
but ideally we should at least build the kernel in the future
(linux_testing itself.)

Signed-off-by: Austin Seipp <aseipp@pobox.com>
2019-05-21 11:50:33 -05:00
Edmund Wu
bc5ecf3be7
linux_testing_bcachefs: prune outdated patch
No longer necessary since by the current revision it is already included.
Closes https://github.com/NixOS/nixpkgs/issues/61775.
2019-05-20 22:11:39 -04:00
Tim Steinbach
81d4e65891
linux: 5.1-rc7 -> 5.2-rc1 2019-05-20 11:20:37 -04:00
Ben Wolsieffer
f4695724a8 linux_hardkernel_4_14: 4.14.102-156 -> 4.14.120-160 2019-05-19 13:11:52 -04:00
Joachim F
bfadef5c13
Merge pull request #61171 from eadwu/bcachefs/update-2
linux_testing_bcachefs,bcachefs-tools: 2019-04-04 -> 2019-05-08
2019-05-17 11:22:15 +00:00
Vladimír Čunát
fc67de1802
Merge branch 'staging-next'
A few thousand Darwin jobs are still pending, but there we're depending
on this merge to fix the channel-blocking lz4 failure.
https://hydra.nixos.org/eval/1519778?compare=1519770
2019-05-17 09:43:32 +02:00
Tim Steinbach
37d17ec485
linux: 5.1.2 -> 5.1.3 2019-05-16 14:38:17 -04:00
Tim Steinbach
327bfaf1a7
linux: 5.0.16 -> 5.0.17 2019-05-16 14:38:14 -04:00
Tim Steinbach
e289798ec8
linux: 4.9.176 -> 4.9.177 2019-05-16 14:38:11 -04:00
Tim Steinbach
b5c73e967c
linux: 4.4.179 -> 4.4.180 2019-05-16 14:38:08 -04:00
Tim Steinbach
e9ec2f1f29
linux: 4.19.43 -> 4.19.44 2019-05-16 14:38:05 -04:00
Tim Steinbach
08aae882b6
linux: 4.14.119 -> 4.14.120 2019-05-16 14:38:02 -04:00
Frederik Rietdijk
d4464ff8fe Merge master into staging-next 2019-05-16 08:17:55 +02:00
Tim Steinbach
3b3bfdb4c9
linux: 5.1.1 -> 5.1.2 2019-05-14 18:30:52 -04:00
Tim Steinbach
8ce75f18df
linux: 5.0.15 -> 5.0.16 2019-05-14 18:30:22 -04:00
Tim Steinbach
68bb6a928f
linux: 4.9.175 -> 4.9.176 2019-05-14 18:29:53 -04:00
Tim Steinbach
0a512e03f9
linux: 4.19.42 -> 4.19.43 2019-05-14 18:29:04 -04:00
Tim Steinbach
0f898bd230
linux: 4.14.118 -> 4.14.119 2019-05-14 18:28:36 -04:00
Linus Heckemann
1d37727453
Merge pull request #61162 from lheckemann/kernel-preempt-voluntary
Kernel config: use PREEMPT_VOLUNTARY
2019-05-14 17:37:19 +02:00
Frederik Rietdijk
8abe5ee07e Merge master into staging-next 2019-05-14 10:23:13 +02:00
Florian Klink
f2ac54d086
kernel: Disable VirtualBox guest modules. (#60938)
kernel: Disable VirtualBox guest modules.
2019-05-12 23:42:42 +02:00
Frederik Rietdijk
ef0dbef7f1 Merge master into staging-next 2019-05-12 19:59:09 +02:00
Tim Steinbach
9038594b95
linux: 5.1 -> 5.1.1 2019-05-11 09:08:18 -04:00
Tim Steinbach
c058fb9d08
linux: 5.0.14 -> 5.0.15 2019-05-11 09:07:54 -04:00
Tim Steinbach
fe65f45fb3
linux: 4.9.174 -> 4.9.175 2019-05-11 09:07:25 -04:00
Tim Steinbach
2a78d62815
linux: 4.19.41 -> 4.19.42 2019-05-11 09:06:34 -04:00
Tim Steinbach
659c6ab081
linux: 4.14.117 -> 4.14.118 2019-05-11 09:06:07 -04:00
Vladimír Čunát
e8f4ad0169
Merge branch 'master' into staging-next
~5k rebuilds per platform.
Hydra nixpkgs: ?compare=1518759
2019-05-11 09:41:36 +02:00
Edmund Wu
5c921ba498
linux_testing_bcachefs: 5.0.2019.04.04 -> 5.0.2019.05.08 2019-05-08 22:05:41 -04:00
Linus Heckemann
e4c269813c kernel/common-config: PREEMPT -> PREEMPT_VOLUNTARY 2019-05-08 19:42:24 +02:00
Linus Heckemann
ac6337058a kernel/common-config: move criu to its own set
It was previously in the "test" set, which seemed an inappropriate
placement.
2019-05-08 19:40:39 +02:00
Tim Steinbach
ec75f9c2c8
linux: 5.0.13 -> 5.0.14 2019-05-08 10:13:43 -04:00
Tim Steinbach
de8a2720e2
linux: 4.9.173 -> 4.9.174 2019-05-08 10:13:43 -04:00
Tim Steinbach
f531f08f0c
linux: 4.19.40 -> 4.19.41 2019-05-08 10:13:42 -04:00
Tim Steinbach
103a7daa53
linux: 4.14.116 -> 4.14.117 2019-05-08 10:13:42 -04:00
Frederik Rietdijk
87a5d8fede Merge staging-next into staging 2019-05-07 19:30:14 +02:00
Joachim Fasting
87bc514620
hardened-config: enable the SafeSetID LSM
The purpose of this LSM is to allow processes to drop to a less privileged
user id without having to grant them full CAP_SETUID (or use file caps).

The LSM allows configuring a whitelist policy of permitted from:to uid
transitions.  The policy is enforced upon calls to setuid(2) and related
syscalls.

Policies are configured through securityfs by writing to
- safesetid/add_whitelist_policy ; and
- safesetid/flush_whitelist_policies

A process attempting a transition not permitted by current policy is killed
(to avoid accidentally running with higher privileges than intended).

A uid that has a configured policy is prevented from obtaining auxiliary
setuid privileges (e.g., setting up user namespaces).

See also: https://www.kernel.org/doc/html/latest/admin-guide/LSM/SafeSetID.html
2019-05-07 13:39:24 +02:00
Jörg Thalheim
2146e1023a
Merge pull request #61076 from Mic92/linux-fpu
linux_5_0: restore __kernel_fpu_{begin,restore}
2019-05-07 10:35:04 +01:00
Jörg Thalheim
7b77c27caa
linux_5_0: restore __kernel_fpu_{begin,restore}
In 5.0er these function were removed from the public interface also zfs needs
them for AVX/AES-NI support. Without this patch for example throughput on a
encrypted zfs dataset drops to 200 MB/s from 1.2 GB/s. These functions were
removed as their was no user within the linux kernel tree itself.
2019-05-06 14:14:40 +01:00
Austin Seipp
181e971755
linux: add 5.1 release
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2019-05-06 00:39:22 -05:00
Tim Steinbach
9d6aef817b
linux: 5.0.12 -> 5.0.13 2019-05-05 11:16:44 -04:00