public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
295,533 Commits 1 Branch 0 Tags
Commit Graph

378 Commits

Author SHA1 Message Date
TredwellGit
be7cfa7be7 linux/hardened/patches/5.4: 5.4.155-hardened1 -> 5.4.157-hardened1 
(cherry picked from commit 5564761e1e12083b88e60d0f034337a5ed0ee719)
 2021-11-05 17:36:16 +00:00
TredwellGit
12159ee228 linux/hardened/patches/5.14: 5.14.14-hardened1 -> 5.14.16-hardened1 
(cherry picked from commit ac2958663880515705c7384c71c35a2e1668108a)
 2021-11-05 17:36:15 +00:00
TredwellGit
08ed409e51 linux/hardened/patches/5.10: 5.10.75-hardened1 -> 5.10.77-hardened1 
(cherry picked from commit 0b37e93d6be273b3cef6021af1a893e0e08d218e)
 2021-11-05 17:36:14 +00:00
TredwellGit
84623a4196 linux/hardened/patches/4.19: 4.19.213-hardened1 -> 4.19.215-hardened1 
(cherry picked from commit d4efdd46c7b95fefb687c3f30d130e184cacc203)
 2021-11-05 17:36:13 +00:00
TredwellGit
ae204e9ec3 linux/hardened/patches/4.14: 4.14.252-hardened1 -> 4.14.254-hardened1 
(cherry picked from commit 6cbce224796caabc7762d703f8ae2a6e995c7d11)
 2021-11-05 17:36:11 +00:00
Maximilian Bosch
f47c57802e
linux: build hardened kernel with matching releases 
Until now we merged kernel updates even if no hardened versions were
available yet. On one hand we don't want to delay patch-level updates,
on the other hand users of hardened kernels have frequent breakage now[1].

This change aims to provide a solution this issue:

* The hardened patchset now references the kernel version it's released
  for (including a sha256 hash for the fixed-output path of the source
  tarball).
* The `hardenedKernelFor`-function doesn't just append hardened patches
  now, but also overrides version & src to match the kernel version the
  patch was built & tested for.

Refs #140281

[1] https://hydra.nixos.org/job/nixos/trunk-combined/nixpkgs.linuxPackages_hardened.kernel.x86_64-linux/all

(cherry picked from commit bb5aa0109b6db98a2e0a7ba88f5e0287e2374384)
 2021-10-28 22:26:22 +02:00
TredwellGit
775fb6d1a8 linux/hardened/patches/5.4: 5.4.152-hardened1 -> 5.4.154-hardened1 
(cherry picked from commit 75dbbe37be75baf6096e7fee61bd26a44743832c)
 2021-10-20 21:44:05 +00:00
TredwellGit
9e26201347 linux/hardened/patches/5.14: 5.14.11-hardened1 -> 5.14.13-hardened1 
(cherry picked from commit cf9f5f74dd76829a8e403e0324f04595462011a9)
 2021-10-20 21:44:04 +00:00
TredwellGit
6592fdf573 linux/hardened/patches/5.10: 5.10.72-hardened1 -> 5.10.74-hardened1 
(cherry picked from commit e94db0f89c15e28cd5aff93dc55466d06f7c85cd)
 2021-10-20 21:44:03 +00:00
TredwellGit
015f1c52a6 linux/hardened/patches/4.19: 4.19.210-hardened1 -> 4.19.212-hardened1 
(cherry picked from commit a33fc5384bb5e5d7debd7fa6faee3667957f0138)
 2021-10-20 21:44:02 +00:00
TredwellGit
8c2bb7c9c7 linux/hardened/patches/4.14: 4.14.250-hardened1 -> 4.14.251-hardened1 
(cherry picked from commit cf0d47c50527d9712942ed2beed680cd8256f0fc)
 2021-10-20 21:44:01 +00:00
TredwellGit
0bf9a9ec4f
linux/hardened/patches/5.4: 5.4.150-hardened1 -> 5.4.152-hardened1 
(cherry picked from commit c7b05f54dff6c0a5775523035d3ee4111050229d)
 2021-10-16 00:11:58 +02:00
TredwellGit
f753f63fe6
linux/hardened/patches/5.14: 5.14.9-hardened1 -> 5.14.11-hardened1 
(cherry picked from commit 331bb5fcecd7397cbcc86b26b3f014c1294fa78e)
 2021-10-16 00:11:58 +02:00
TredwellGit
c6b4f1cb24
linux/hardened/patches/5.10: 5.10.70-hardened1 -> 5.10.72-hardened1 
(cherry picked from commit 42dd28857d8eaddaca3e36b23f6ee7e3d6f98181)
 2021-10-16 00:11:57 +02:00
TredwellGit
80f26c622d
linux/hardened/patches/4.19: 4.19.208-hardened1 -> 4.19.210-hardened1 
(cherry picked from commit 8df94e6d31232545ae83cc6cc44f210810234774)
 2021-10-16 00:11:56 +02:00
TredwellGit
2a46e86ddc
linux/hardened/patches/4.14: 4.14.248-hardened1 -> 4.14.250-hardened1 
(cherry picked from commit 6e94404dc33f7ad6fc491ed6fe6fcc0e5f23611c)
 2021-10-16 00:11:56 +02:00
TredwellGit
60ca87841f linux/hardened/patches/5.4: 5.4.149-hardened1 -> 5.4.150-hardened1 
(cherry picked from commit 642ca73937decde097a6c83205f48a5ac081fe94)
 2021-10-01 23:34:04 +00:00
TredwellGit
068683802e linux/hardened/patches/5.14: 5.14.8-hardened1 -> 5.14.9-hardened1 
(cherry picked from commit dd93aec4c4905c17f17020658ed1f5858c9d6b81)
 2021-10-01 23:34:04 +00:00
TredwellGit
925681abe4 linux/hardened/patches/5.10: 5.10.69-hardened1 -> 5.10.70-hardened1 
(cherry picked from commit f178ff4a04c8d4e2ed43e6538a1aac336bfa891c)
 2021-10-01 23:34:03 +00:00
Maximilian Bosch
e134154396
Merge pull request #139662 from NixOS/backport-139658-to-release-21.05 
[Backport release-21.05] Kernels 2021-09-27
 2021-10-01 22:34:24 +02:00
Maximilian Bosch
8079b1a3c8
linux_5_13: drop 
5.13.19 was the last 5.13 release and the version is now EOL[1].

[1] https://lwn.net/Articles/869747/

(cherry picked from commit 01eb8ec98a52c1e7317fd62f5bc58db30951e716)
 2021-09-30 11:13:19 +02:00
TredwellGit
0fd3917aa6 linux/hardened/patches/5.4: 5.4.148-hardened1 -> 5.4.149-hardened1 
(cherry picked from commit a92a208a9d8eaba19a5d985f567387adea455687)
 2021-09-27 20:47:50 +00:00
TredwellGit
e62dfb6de9 linux/hardened/patches/5.14: 5.14.7-hardened1 -> 5.14.8-hardened1 
(cherry picked from commit 05ed561fb6de4fce668d5c5d1c2c7ae18ab8aff5)
 2021-09-27 20:47:49 +00:00
TredwellGit
ee4a4412a1 linux/hardened/patches/5.10: 5.10.68-hardened1 -> 5.10.69-hardened1 
(cherry picked from commit c4ea02fc5c468ebd06f9575eb764ad4d08c8fdd6)
 2021-09-27 20:47:48 +00:00
TredwellGit
559153f267 linux/hardened/patches/4.19: 4.19.207-hardened1 -> 4.19.208-hardened1 
(cherry picked from commit 9e78068b041dfebbac36958d6745bc3ef2415d5d)
 2021-09-27 20:47:47 +00:00
TredwellGit
cb8066b193 linux/hardened/patches/4.14: 4.14.247-hardened1 -> 4.14.248-hardened1 
(cherry picked from commit 1e05c4eae9ec704b7057dcec87cf5007d6a081ac)
 2021-09-27 20:47:46 +00:00
TredwellGit
74d0889655 linux/hardened/patches/5.4: 5.4.147-hardened1 -> 5.4.148-hardened1 
(cherry picked from commit bb21f231cf1556318346f7476a2ae4cc234c2cd6)
 2021-09-27 09:57:32 +00:00
TredwellGit
4b3fd66a5b linux/hardened/patches/5.14: 5.14.6-hardened1 -> 5.14.7-hardened1 
(cherry picked from commit 5b71d92f9ad21a39b8ed957b1d5d54ecb5536da6)
 2021-09-27 09:57:32 +00:00
TredwellGit
1febaecabb linux/hardened/patches/5.10: 5.10.67-hardened1 -> 5.10.68-hardened1 
(cherry picked from commit 34fe5d827ca5a1cee89b5abfde73a540977f3722)
 2021-09-27 09:57:31 +00:00
TredwellGit
8a0a9f3597 linux/hardened/patches/4.19: 4.19.206-hardened1 -> 4.19.207-hardened1 
(cherry picked from commit b754a3c355b21bd2d4503d0f1b5b7c98448e5496)
 2021-09-27 09:57:30 +00:00
TredwellGit
422b30ce66 linux/hardened/patches/4.14: 4.14.246-hardened1 -> 4.14.247-hardened1 
(cherry picked from commit 7b29a72e545ee913dbdb07b8379d7d7ccd08b173)
 2021-09-27 09:57:29 +00:00
TredwellGit
b752e7829b linux/hardened/patches/5.14: 5.14.5-hardened1 -> 5.14.6-hardened1 
(cherry picked from commit b8b772a1da76d38e3c4446c875326fa939d815e1)
 2021-09-21 10:52:24 +00:00
TredwellGit
0731d03f57 linux/hardened/patches/5.13: 5.13.18-hardened1 -> 5.13.19-hardened1 
(cherry picked from commit a41022ed40d070bb23a365e4c3ee80618a3bb2cd)
 2021-09-21 10:52:23 +00:00
TredwellGit
174c38c553 linux/hardened/patches/5.10: 5.10.66-hardened1 -> 5.10.67-hardened1 
(cherry picked from commit 4a9ffb82aedee82a456268e402c714966adbbf2e)
 2021-09-21 10:52:23 +00:00
ajs124
756786068f
linux/hardened/patches/5.14: 5.14.4-hardened1 -> 5.14.5-hardened1 
(cherry picked from commit 9f34448a98ecc21726dd5e87b7a61daf76f954de)
 2021-09-17 10:16:51 -04:00
ajs124
939149de74
linux/hardened/patches/5.4: 5.4.146-hardened1 -> 5.4.147-hardened1 
(cherry picked from commit 36e21638f5f308d8985035bca9c14595c0a3b65f)
 2021-09-17 10:16:50 -04:00
ajs124
e6b00f2f5f
linux/hardened/patches/5.13: 5.13.17-hardened1 -> 5.13.18-hardened1 
(cherry picked from commit 7c04d2e390a7dbb87a428f625839db42071b7b99)
 2021-09-17 10:16:50 -04:00
ajs124
f35f202e06
linux/hardened/patches/5.10: 5.10.65-hardened1 -> 5.10.66-hardened1 
(cherry picked from commit 031afe4faa1e390ebdc10eb145aaeab9be978cea)
 2021-09-17 10:16:50 -04:00
TredwellGit
6c5790dfb6 linux/hardened/patches/5.4: 5.4.144-hardened1 -> 5.4.146-hardened1 
(cherry picked from commit 00c500e9fc975957b4357ce46d5f10e8bf2cd1ba)
 2021-09-16 16:18:21 +00:00
TredwellGit
fbc340ce50 linux/hardened/patches/5.14: 5.14.2-hardened1 -> 5.14.4-hardened1 
(cherry picked from commit 60b711316445f580345d815cfd04be592b136b8a)
 2021-09-16 16:18:20 +00:00
TredwellGit
cc619f3c02 linux/hardened/patches/5.13: 5.13.15-hardened1 -> 5.13.17-hardened1 
(cherry picked from commit a8de1dcd2b5896d141bc89e0fc2cc665cd9581d7)
 2021-09-16 16:18:19 +00:00
TredwellGit
a1b9329753 linux/hardened/patches/5.10: 5.10.63-hardened1 -> 5.10.65-hardened1 
(cherry picked from commit 48e902a2efa3bb149d4526125e57c1429af95014)
 2021-09-16 16:18:19 +00:00
Tim Steinbach
075f639909 linux/hardened/patches/5.14: init at 5.14.2-hardened1 
(cherry picked from commit 820d68d2dc5eacc10f199f7903301ee577f44a52)
 2021-09-11 20:33:43 +00:00
Tim Steinbach
1309fb071c linux/hardened/patches/5.13: 5.13.14-hardened1 -> 5.13.15-hardened1 
(cherry picked from commit 02b5c3b291cbf69867122862debca8521388ad39)
 2021-09-11 20:33:43 +00:00
Tim Steinbach
d9f651a0d2 linux/hardened/patches/5.10: 5.10.62-hardened1 -> 5.10.63-hardened1 
(cherry picked from commit 3fe64b3728a4beeaa53542375d1d7793517baab1)
 2021-09-11 20:33:42 +00:00
Bernardo Meurer
be513967cf linux_5_13_hardened: 5.13.13 -> 5.13.14 
(cherry picked from commit abfa8098ace1c87c6591cb27f9c1ac19d6081e9b)
 2021-09-07 21:00:11 +00:00
Bernardo Meurer
32ebfb9dc2 linux_5_10_hardened: 5.10.61 -> 5.10.62 
(cherry picked from commit 1aba1d891fbf3cf9a34c10b12f14f3dd64dba6f1)
 2021-09-07 21:00:10 +00:00
Bernardo Meurer
916f1c5d7b linux_5_4_hardened: 5.4.143 -> 5.4.144 
(cherry picked from commit 8169d9283ebd366a0effe99bd5d9f5caae3aebb3)
 2021-09-07 21:00:10 +00:00
Bernardo Meurer
e063d8c1b9 linux_4_19_hardened: 4.19.205 -> 4.19.206 
(cherry picked from commit 1c0e5d13a99b35f8587041064c7df57eef2e2fc8)
 2021-09-07 21:00:09 +00:00
Bernardo Meurer
f6bb624285 linux_4_14_hardened: 4.14.245 -> 4.14.246 
(cherry picked from commit 17681be1d3d5dd86b33ce1e5178ed7e168a86dfc)
 2021-09-07 21:00:09 +00:00