public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
166,990 Commits 1 Branch 0 Tags
6851b8f3da17034c422a36229cf2962f497d2d1e
Commit Graph

2871 Commits

Author SHA1 Message Date
Vladimír Čunát
3fa77297b5 linux: avoid memory hotplug support on most platforms 
It broke i686 build, and it's probably not worth it on others, too.
/cc #54095 e63414078a.
 2019-01-19 19:22:02 +01:00
Vladimír Čunát
23eb5e846d Merge #54095: linux: enable memory hotplug support 2019-01-19 16:26:01 +01:00
Aaron Andersen
e63414078a Enable memory hotplug support 2019-01-18 13:17:33 +00:00
Danylo Hlynskyi
23a13b562c kernel config: add support for CONFIG_SQUASHFS_ZSTD (#52967) 
Also, allow override `make-squashfs.nix` compression parameters.
 2019-01-17 15:24:44 +02:00
Tim Steinbach
bae1a0f825 linux: 4.20.2 -> 4.20.3 2019-01-17 06:56:20 -05:00
Tim Steinbach
b4ab6ffb7f linux: 4.19.15 -> 4.19.16 2019-01-17 06:56:08 -05:00
Tim Steinbach
6ad56550e4 linux: 4.14.93 -> 4.14.94 2019-01-17 06:55:59 -05:00
Tim Steinbach
1e62588421 linux: 4.9.150 -> 4.9.151 2019-01-17 06:55:42 -05:00
Tim Steinbach
2833865206 linux: 4.4.170 -> 4.4.171 2019-01-17 06:55:31 -05:00
Tim Steinbach
429166fea2 linux: 5.0-rc1 -> 5.0-rc2 2019-01-14 09:24:39 -05:00
Tim Steinbach
bddaa4bc16 linux: 4.20.1 -> 4.20.2 2019-01-13 15:50:00 -05:00
Tim Steinbach
bbc1f0c452 linux: 4.19.14 -> 4.19.15 2019-01-13 15:50:00 -05:00
Tim Steinbach
0a8b109e81 linux: 4.14.92 -> 4.14.93 2019-01-13 15:49:59 -05:00
Tim Steinbach
887fd04623 linux: 4.9.149 -> 4.9.150 2019-01-13 15:49:59 -05:00
Tim Steinbach
c88c0538ea linux: 4.4.169 -> 4.4.170 2019-01-13 15:49:59 -05:00
Pierre Bourdon
b26c824da3 Revert "Revert "Revert "linux-hardened: Disable GCC_PLUGIN_RANDSTRUCT""" 
The issue with out-of-tree modules has been addressed and the feature
should now be good to re-enable again.

This reverts commit 865f7a14b4.
 2019-01-11 12:35:16 +01:00
Pierre Bourdon
1b9bf8fa75 kernel: make the RANDSTRUCT seed deterministic 2019-01-11 12:35:16 +01:00
Tim Steinbach
20f9b5d10a linux: 4.19.13 -> 4.19.14 2019-01-09 12:10:11 -05:00
Tim Steinbach
39173bff87 linux: 4.20 -> 4.20.1 2019-01-09 11:59:35 -05:00
Tim Steinbach
d55b3c9bf0 linux: 4.14.91 -> 4.14.92 2019-01-09 11:24:45 -05:00
Tim Steinbach
ec3e81beaf linux: 4.9.148 -> 4.9.149 2019-01-09 11:03:10 -05:00
Bastian Köcher
a90fc6d3ef linux: Adds patch for fixing wifi on raspberry pi 2019-01-09 11:18:09 +01:00
Joachim Fasting
865f7a14b4 Revert "Revert "linux-hardened: Disable GCC_PLUGIN_RANDSTRUCT"" 
This reverts commit c68e8b05f0.

RANDSTRUCT currently fails to work with out-of-tree modules, as
evinced by
c68e8b05f0 (commitcomment-31850284)
and https://github.com/NixOS/nixpkgs/issues/53522.

Specifically, loading out-of-tree modules results in modsym version
mismatches, as in
   spl: version magic '4.20.0 SMP mod_unload modversions RANDSTRUCT_PLUGIN
from the issue above.

A working hypothesis is that the randstruct seed is not carried over when
building out-of-tree modules but more investigation is needed here.

Closes https://github.com/NixOS/nixpkgs/issues/53522
 2019-01-07 19:50:12 +01:00
Tim Steinbach
97aba92bcd linux: 4.20-rc7 -> 5.0-rc1 2019-01-07 07:57:38 -05:00
Joachim Fasting
d62086e6fc hardened-config: allow slub/slab free poisoning 2019-01-05 14:07:36 +01:00
Joachim Fasting
11840f5c70 hardened-config: explain HARDENED_USERCOPY_FALLBACK n 2019-01-05 14:07:36 +01:00
Joachim Fasting
dfd77a046d hardened-config: ensure STRICT_KERNEL_RWX 
This is y in the default config, but enable it explicitly here to catch
situations where it has been disabled (explicitly or implicitly).
 2019-01-05 14:07:35 +01:00
Joachim Fasting
1801aad7b8 hardened-config: clarify MODIFY_LDT_SYSCALL 
This likely never worked; MODIFY_LDT_SYSCALL depends on EXPERT; enabling
EXPERT however seems to introduce quite a few changes that would need to be
properly vetted.

The version guard is unnecessary, however, as this config has been supported
since 4.3.
 2019-01-05 14:07:34 +01:00
Joachim Fasting
abc8ed3fca hardened-config: clarify readonly LSM hooks config 
SECURITY_WRITABLE_HOOKS is implicitly controlled by SECURITY_SELINUX_DISABLE;
explicitly unsetting results in an error because the configfile builder fails
to detect that it has in fact been unset (reporting it as an unused option).
For now, leave WRITABLE_HOOKS as an "optional" config for documentation
purposes.
 2019-01-05 14:07:33 +01:00
Joachim Fasting
c68e8b05f0 Revert "linux-hardened: Disable GCC_PLUGIN_RANDSTRUCT" 
This reverts commit 5dda1324be.

Presumably this was done to work around build errors or something but it
works fine now.
 2019-01-05 14:07:21 +01:00
Pierre Bourdon
0f7ca26a48 kernel/hardened-config.nix: add STACKLEAK plugin on 4.20+ 2019-01-04 22:24:50 +01:00
Pierre Bourdon
9dc0d94896 kernel/hardened-config.nix: re-enable GCC plugins 2019-01-04 22:24:50 +01:00
Pierre Bourdon
c789f642f0 kernel/generic.nix: provide required dependencies for GCC plugins builds 2019-01-04 22:24:50 +01:00
Benno Fünfstück
7817aa3641 linux-rpi: set correct hydraPlatforms (#53325) 2019-01-03 22:42:14 +01:00
Joachim F
88c516dd55 Merge pull request #52606 from lopsided98/linux-hardkernel-update 
linux_hardkernel_4_14: 4.14.85-152 -> 4.14.87-153
 2019-01-02 18:16:47 +00:00
Tim Steinbach
d6805baded linux: 4.19.12 -> 4.19.13 2018-12-30 09:57:54 -05:00
Tim Steinbach
226eb52715 linux: 4.14.90 -> 4.14.91 2018-12-30 09:57:54 -05:00
Tim Steinbach
a7bd7a38ea linux: 4.9.147 -> 4.9.148 2018-12-30 09:57:53 -05:00
Ivan Kozik
1c8fea18e2 kernel/patches.nix: remove hard tabs 2018-12-28 09:06:56 +01:00
Samuel Dionne-Riel
889ef35303 linuxPackages_4_{19,20}: works around bug with overlayfs. 
See: https://github.com/NixOS/nixpkgs/issues/48828#issuecomment-445208626
 2018-12-26 22:51:31 +00:00
Tim Steinbach
24cdaa7b48 linux-libre: 15715 -> 15814 2018-12-24 12:33:24 -05:00
Tim Steinbach
8f9c2f9726 linux: Add 4.20 2018-12-24 12:33:24 -05:00
Tim Steinbach
af6c117fac linux: 4.19.11 -> 4.19.12 2018-12-21 09:11:02 -05:00
Tim Steinbach
dea57f15e9 linux: 4.14.89 -> 4.14.90 2018-12-21 09:10:54 -05:00
Tim Steinbach
a5f447e16a linux: 4.9.146 -> 4.9.147 2018-12-21 09:10:45 -05:00
Tim Steinbach
54ce2e016b linux: 4.4.168 -> 4.4.169 2018-12-21 09:10:24 -05:00
Tim Steinbach
98ac5710bd kernel-config: CIFS_POSIX no longer exists 2018-12-21 09:10:17 -05:00
Ben Wolsieffer
2b02350d39 linux_hardkernel_4_14: 4.14.85-152 -> 4.14.87-153 2018-12-20 21:15:07 -05:00
Tim Steinbach
1b84b9f725 linux: 4.19.10 -> 4.19.11 2018-12-20 10:46:17 -05:00
Tim Steinbach
4d14879081 linux: 4.4.167 -> 4.4.168 2018-12-18 09:12:34 -05:00