public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
f47c57802ec32d28f4e524faa86bbf6905a6347b
nixpkgs/pkgs/os-specific/linux/kernel
History
Maximilian Bosch f47c57802e linux: build hardened kernel with matching releases 
Until now we merged kernel updates even if no hardened versions were
available yet. On one hand we don't want to delay patch-level updates,
on the other hand users of hardened kernels have frequent breakage now[1].

This change aims to provide a solution this issue:

* The hardened patchset now references the kernel version it's released
  for (including a sha256 hash for the fixed-output path of the source
  tarball).
* The `hardenedKernelFor`-function doesn't just append hardened patches
  now, but also overrides version & src to match the kernel version the
  patch was built & tested for.

Refs #140281

[1] https://hydra.nixos.org/job/nixos/trunk-combined/nixpkgs.linuxPackages_hardened.kernel.x86_64-linux/all

(cherry picked from commit bb5aa0109b6db98a2e0a7ba88f5e0287e2374384)
2021-10-28 22:26:22 +02:00
..
cpu-cgroup-v2-patches
hardened
linux: build hardened kernel with matching releases
2021-10-28 22:26:22 +02:00
bridge-stp-helper.patch
common-config.nix
linux: only configure IDE to "no" pre-5.14
2021-09-05 06:20:25 +00:00
export-rt-sched-migrate.patch
gen-kheaders-metadata.patch
generate-config.pl
generic.nix
genksyms-fix-segfault.patch
gpio-utils.nix
linux-4.4.nix
linux: 4.4.289 -> 4.4.290
2021-10-27 16:07:41 +00:00
linux-4.9.nix
linux: 4.9.287 -> 4.9.288
2021-10-27 16:07:42 +00:00
linux-4.14.nix
linux: 4.14.252 -> 4.14.253
2021-10-27 16:07:38 +00:00
linux-4.19.nix
linux: 4.19.213 -> 4.19.214
2021-10-27 16:07:40 +00:00
linux-5.4.nix
linux: 5.4.155 -> 5.4.156
2021-10-27 16:07:45 +00:00
linux-5.10.nix
linux: 5.10.75 -> 5.10.76
2021-10-27 16:07:43 +00:00
linux-5.14.nix
linux: 5.14.14 -> 5.14.15
2021-10-27 16:07:44 +00:00
linux-hardkernel-4.14.nix
linux-libre.nix
linux_latest-libre: 18380 -> 18413
2021-10-27 16:07:47 +00:00
linux-lqx.nix
linux_lqx: 5.12.17 -> 5.12.19
2021-07-28 13:50:30 +02:00
linux-mptcp-95.nix
linux-rpi.nix
linux-rt-5.4.nix
linux-rt_5_4: 5.4.143-rt64 -> 5.4.154-rt65
2021-10-27 16:07:46 +00:00
linux-rt-5.10.nix
nixos/boot: properly override the kernel in boot.kernelPatches
2021-10-26 07:46:54 +00:00
linux-rt-5.11.nix
nixos/boot: properly override the kernel in boot.kernelPatches
2021-10-26 07:46:54 +00:00
linux-testing-bcachefs.nix
linux-testing.nix
linux-xanmod.nix
linux_xanmod: 5.12.12 -> 5.12.13
2021-07-05 14:55:17 -07:00
linux-zen.nix
linux_zen: 5.13.12-zen1 -> 5.13.13-zen1
2021-08-28 09:13:04 +02:00
mac-nvme-t2.patch
manual-config.nix
linux: create maintainer team
2021-10-28 21:58:39 +02:00
modinst-arg-list-too-long.patch
mptcp-config.nix
p9-fixes.patch
patches.nix
linux: build hardened kernel with matching releases
2021-10-28 22:26:22 +02:00
perf.nix
linuxPackages_latest.perf: fix build
2021-07-29 11:55:38 +02:00
randstruct-provide-seed.patch
request-key-helper-updated.patch
request-key-helper.patch
rtl8761b-support.patch
update-libre.sh
update-rt.sh
update-zen.sh
linux_zen: add update script
2021-08-21 10:04:20 +00:00
update.sh