alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
179285 commits 217 branches 121 tags 4.5 GiB
Commit graph

3037 commits

Author SHA1 Message Date
Tim Steinbach ec75f9c2c8
linux: 5.0.13 -> 5.0.14 2019-05-08 10:13:43 -04:00
Tim Steinbach de8a2720e2
linux: 4.9.173 -> 4.9.174 2019-05-08 10:13:43 -04:00
Tim Steinbach f531f08f0c
linux: 4.19.40 -> 4.19.41 2019-05-08 10:13:42 -04:00
Tim Steinbach 103a7daa53
linux: 4.14.116 -> 4.14.117 2019-05-08 10:13:42 -04:00
Joachim Fasting 87bc514620
hardened-config: enable the SafeSetID LSM 
The purpose of this LSM is to allow processes to drop to a less privileged
user id without having to grant them full CAP_SETUID (or use file caps).

The LSM allows configuring a whitelist policy of permitted from:to uid
transitions.  The policy is enforced upon calls to setuid(2) and related
syscalls.

Policies are configured through securityfs by writing to
- safesetid/add_whitelist_policy ; and
- safesetid/flush_whitelist_policies

A process attempting a transition not permitted by current policy is killed
(to avoid accidentally running with higher privileges than intended).

A uid that has a configured policy is prevented from obtaining auxiliary
setuid privileges (e.g., setting up user namespaces).

See also: https://www.kernel.org/doc/html/latest/admin-guide/LSM/SafeSetID.html
 2019-05-07 13:39:24 +02:00
Jörg Thalheim 2146e1023a
Merge pull request #61076 from Mic92/linux-fpu 
linux_5_0: restore __kernel_fpu_{begin,restore}
 2019-05-07 10:35:04 +01:00
Jörg Thalheim 7b77c27caa
linux_5_0: restore __kernel_fpu_{begin,restore} 
In 5.0er these function were removed from the public interface also zfs needs
them for AVX/AES-NI support. Without this patch for example throughput on a
encrypted zfs dataset drops to 200 MB/s from 1.2 GB/s. These functions were
removed as their was no user within the linux kernel tree itself.
 2019-05-06 14:14:40 +01:00
Austin Seipp 181e971755
linux: add 5.1 release 
Signed-off-by: Austin Seipp <aseipp@pobox.com>
 2019-05-06 00:39:22 -05:00
Tim Steinbach 9d6aef817b
linux: 5.0.12 -> 5.0.13 2019-05-05 11:16:44 -04:00
Tim Steinbach e867007dc8
linux: 4.19.39 -> 4.19.40 2019-05-05 11:16:17 -04:00
Tim Steinbach 59e9fb1d52
linux: 5.0.11 -> 5.0.12 2019-05-04 10:26:55 -04:00
Tim Steinbach 5ee553b280
linux: 4.9.172 -> 4.9.173 2019-05-04 10:26:40 -04:00
Tim Steinbach 7d0a77cd36
linux: 4.19.38 -> 4.19.39 2019-05-04 10:25:28 -04:00
Tim Steinbach a03324e9ba
linux: 4.14.115 -> 4.14.116 2019-05-04 10:25:01 -04:00
Austin Seipp c8cb015ff6
linuxPackages.perf: add libopcodes as a buildInput 
Newer versions of perf in Linux 5.1+ support disassembling and
annotating eBPF programs inside the kernel. In order to do this, it uses
libbfd's support for bpf disassembly. There are two parts: libopcodes
and libbfd.

The 'perf' build system seems to expect libopcodes/libbfd to go "hand in
hand" -- always together, if one or the other is installed. If the build
system detects libbfd is available, then an import of <dis-asm.h> is
performed, but this fails since it wasn't in the buildInput. Fixing this
should be an easy, backwards-compatible change.

Fixes #60891, allowing linuxPackages_testing.perf to build again
(currently kernel version 5.1.0-rc7).

Signed-off-by: Austin Seipp <aseipp@pobox.com>
 2019-05-03 15:10:46 -05:00
Tim Steinbach 6494ad9996
linux: 5.0.10 -> 5.0.11 2019-05-02 13:57:46 -04:00
Tim Steinbach 9d7638371f
linux: 4.9.171 -> 4.9.172 2019-05-02 13:57:46 -04:00
Tim Steinbach e0bf73dbde
linux: 4.19.37 -> 4.19.38 2019-05-02 13:57:45 -04:00
Tim Steinbach 5d03bfd653
linux: 4.14.114 -> 4.14.115 2019-05-02 13:57:45 -04:00
Tim Steinbach aeb464dfd3
linux: 5.1-rc6 -> 5.1-rc7 2019-04-29 08:06:52 -04:00
Tim Steinbach c08aa32c90
linux: Remove i2c-oops patch 2019-04-27 08:08:33 -04:00
Tim Steinbach 264367b15e
linux: 5.0.9 -> 5.0.10 2019-04-27 08:08:31 -04:00
Tim Steinbach 8d98033d99
linux: 4.9.170 -> 4.9.171 2019-04-27 08:08:26 -04:00
Tim Steinbach 3d829058a1
linux: 4.4.178 -> 4.4.179 2019-04-27 08:06:43 -04:00
Tim Steinbach d43faab5ef
linux: 4.19.36 -> 4.19.37 2019-04-27 08:06:39 -04:00
Tim Steinbach ae7baea76f
linux: 4.14.113 -> 4.14.114 2019-04-27 08:05:36 -04:00
Vladyslav M e8c2633bc1
linux_testing_bcachefs,bcachefs-tools: 2019-04-04 (#58296) 
linux_testing_bcachefs,bcachefs-tools: 2019-04-04
 2019-04-26 19:35:10 +03:00
Edmund Wu dac65a375c
linux_testing_bcachefs: 4.20.2019.03.13 -> 5.0.2019.04.04 2019-04-26 09:16:45 -04:00
Ambroz Bizjak a9c40eef1f
Fix kernel oops on boot due to bug in i2c driver. 
https://github.com/NixOS/nixpkgs/issues/60126
https://lkml.org/lkml/2019/4/24/1123

The patch should be removed in the next round of stable releases because the fix should be included.

(cherry picked from commit 1e8a080589)
 2019-04-25 20:24:34 -04:00
Renaud 12b82b1a06
Merge pull request #58001 from lopsided98/linux-rpi-update 
linux_rpi: 1.20180919 -> 1.20190215
 2019-04-24 23:58:34 +02:00
Tim Steinbach 527dfd3ba9
linux: 5.1-rc5 -> 5.1-rc6 2019-04-22 09:31:34 -04:00
Tim Steinbach 297f8c55e5
linux: 5.0.8 -> 5.0.9 2019-04-20 08:31:09 -04:00
Tim Steinbach 24867c60e4
linux: 4.9.169 -> 4.9.170 2019-04-20 08:30:55 -04:00
Tim Steinbach d5bbae8308
linux: 4.19.35 -> 4.19.36 2019-04-20 08:30:42 -04:00
Tim Steinbach ab17efc087
linux: 4.14.112 -> 4.14.113 2019-04-20 08:30:25 -04:00
Tim Steinbach e9621b2c96
linux: 5.0.7 -> 5.0.8 2019-04-17 10:05:55 -04:00
Tim Steinbach 41336064ab
linux: 4.9.168 -> 4.9.169 2019-04-17 10:05:55 -04:00
Tim Steinbach f9c38693da
linux: 4.19.34 -> 4.19.35 2019-04-17 10:05:55 -04:00
Tim Steinbach dd3964e885
linux: 4.14.111 -> 4.14.112 2019-04-17 10:05:54 -04:00
Joachim F d7da5e2af2
Merge pull request #53826 from delroth/randstruct-custom-seed 
nixos: allow customizing the kernel RANDSTRUCT seed
 2019-04-16 17:49:19 +00:00
Tim Steinbach 4907b2165b
linux: 5.1-rc4 -> 5.1-rc5 2019-04-15 08:26:04 -04:00
Tim Steinbach f5d208d754
linux: 5.1-rc3 -> 5.1-rc4 2019-04-11 17:58:41 -04:00
Matthieu Coudron f173c7b831 linux_mptcp: 0.94.3 -> 0.94.4 (#59045) 
Motivation: https://github.com/multipath-tcp/mptcp/releases/tag/v0.94.4
 2019-04-09 09:34:03 +00:00
Tim Steinbach 922c07d2d2
linux: Fix update script 
The script was wrecking `modDirVersion`, putting them back and
ensuring it will not break again.
 2019-04-07 08:34:12 -04:00
Tim Steinbach eedb7e7ec6
linux: 5.0.6 -> 5.0.7 2019-04-06 12:54:45 -04:00
Tim Steinbach 21373e9c6f
linux: 4.9.167 -> 4.9.168 2019-04-06 12:52:12 -04:00
Tim Steinbach c45589b0bb
linux: 4.19.33 -> 4.19.34 2019-04-06 12:52:04 -04:00
Tim Steinbach b60ce2e638
linux: 4.14.110 -> 4.14.111 2019-04-06 12:51:53 -04:00
Tim Steinbach 4d2c4387cc
linux: Update script commit 2019-04-06 12:51:14 -04:00
Tim Steinbach 0bb32d2776
linux: 5.0.5 -> 5.0.6 2019-04-03 19:37:30 -04:00