debian-packaging
/
linux
8
0
Fork 0
Code Releases Activity
13,921 Commits 2 Branches 0 Tags 493 MiB
Commit Graph

792 Commits

Author SHA1 Message Date
Ben Hutchings 2468672816 lockdown: Replace the other reference to a nonexistent manual page 2019-05-05 19:31:41 +01:00
Ben Hutchings 542ea0941f Undo typo 2019-05-05 13:54:32 +01:00
Ben Hutchings 2c62d20848 MODSIGN: Make shash allocation failure fatal 2019-05-05 13:47:00 +01:00
Ben Hutchings d220ad4bb0 Fix up headers for db/MOK patches 
* Set a correct, specific Origin header for each patch, instead of a
  repo URL and "cherry picked" message
* Add back Date header and Cc pseudo-headers for the second series
* Note which patches have been modified by Luca
 2019-05-05 13:41:38 +01:00
Luca Boccassi 643cc8a41c Add patches to enable loading dbx and MOKX blacklists 
Import patches from:

https://lore.kernel.org/patchwork/cover/933178/

that allow to also load dbx and MOKX as blacklists for modules.
These patches also disable loading MOK/MOKX when secure boot is
not enabled, as the variables will not be safe, and to check the
variables attributes before accepting them.
 2019-05-02 23:04:18 +01:00
Luca Boccassi 188df85f5b Add patches to enable loading db and MOK keys 
Import patches from:

http://git.kernel.org/cgit/linux/kernel/git/dhowells/linux-fs.git/log/?h=keys-uefi

that enable a new option that automatically loads keys from db
and MOK into the secondary keyring, so that they can be used to
verify the signature of kernel modules. Enable the required KCONFIGs.
Allows users to self-sign modules (eg: dkms).
 2019-05-02 22:59:42 +01:00
Ben Hutchings fb4777ce47 lockdown: Refer to Debian wiki until manual page exists 2019-04-21 00:22:20 +01:00
Marcin Juszkiewicz 8e3ab60ac6 update to 4.19.26 2019-03-05 14:28:55 +01:00
dann frazier 1ebd53abbf arm64: lockdown: Move init_lockdown() call after efi_init() 
The lockdown code for arm64 currently fails to engage when in Secure Boot
mode. Seth Forshee noticed that this is because init_lockdown() checks
for efi_enabled(EFI_BOOT), but that bit doesn't get set until uefi_init()
is called.
 2019-02-17 06:09:47 -07:00
Ben Hutchings b051222e6d Change Origin fields for ena patches from bare commit hashes to URLs 2018-12-25 19:51:45 +00:00
Noah Meyerhans 3024a2d70d drivers/net/ethernet/amazon: Backport v2.0.2 from Linux 4.20 
Backport Amazon ENA ethernet driver version 2.0.2 from Linux 4.20

This mostly ammounts to cherry-picking the commits in the range described by
git log v4.19.5..v4.20-rc7 drivers/net/ethernet/amazon

Change e641e99f261f5203a911a9e0db54a214460d2cc4 introduced changes outside the
ena directory, but only removed a redundant #include and was trivial to scope
down.

Upstream dealt with merge conflicts in
d864991b220b7c62e81d21209e1fd978fd67352c; the resolution here was identical to
upstream.
 2018-12-17 23:47:08 -08:00
Ben Hutchings 397f2ab6e1 Update to 4.19.3 2018-11-22 00:15:29 +00:00
Romain Perier 8008ae41de Update to 4.19.2 2018-11-16 21:22:52 +01:00
Ben Hutchings 337682dc35 Release linux (4.18.8-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAluhDZUACgkQ57/I7JWG
 EQkLvQ//QqqAfJXjwZt3Iy+dcYieLqmhy4/KtjVvFP8EKSyfdeWl0awb3szbmMs5
 cy2p5q17mafVZTx9MCppp4y1modMBZrMC6hmB9UAoU0j1GnKHNbtddzA3+uo1dmw
 i2LudGseb8LSL5z6g95P4SozSNNeFPIOLSYxkGVnlG3sUdlhlRYCvYf9k8BKUEbx
 sU0yDXQOhf0kBLsRXW8QfJEBHv5ivr9/Q+s9e71NUpVWaEOZwgfJacM/QWcY8+J4
 2o0XlHtS9+r0Ik0RK5Zyt8eun1sH1cb4Lta9LZjvRLWpCqXNpPSus6V8qENngcyw
 X9ZGWi3nMiR4OOuEMGMxbzXXzWreg9MNPyM5/kVfJKlsLi1xP7ufhnstR+j2/tTJ
 guVLDw73B4RyOwH2p4Kh1Pk0hACagI9AeKfjSBTMMlv2rD6FDfuJlSgEYUIK/NLl
 lsefkkKu2EZVdhIBEGDnu80+V2AuoTYXpEknvbnvlYZ1wLNXb73GIFptWu18dfOy
 fZ4cEWDxuKd52nbsjKlQmaxlFGSfjmmWliorhrU84FZsRjvFARGWWPwnjk8fwcpD
 +D0GASqx37iw1gQK8yNQER3dxHzVh1blIKhADgEWJXsaeHcfyDHziShX7FZ8n6G5
 HQBaynaG0Qc9fWd8O6xmX6wsP/vGRFJchbWwa5Gd7L2cCmur1Vk=
 =lopf
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.18.8-1'

Release linux (4.18.8-1).

- Drop ABI reference files and ABI maintenance patch
- Replace ccp driver patch with upstream version that applies to 4.19
 2018-09-18 15:49:53 +01:00
Ben Hutchings 26224f8bb8 Move featureset patches and series file to debian/patches-<featureset>. 
Fixes lintian warning patch-file-present-but-not-mentioned-in-series.

Also preparation for using dgit, which will remove everything except
the main patch series under debian/patches.
 2018-09-13 01:52:52 +01:00
Ben Hutchings 07b57afec5 Move all patch generation scripts to debian/bin 
Rename them to genpatch-{aufs,lockdown,rt}

Fixes lintian warning patch-file-present-but-not-mentioned-in-series.

Also preparation for using dgit, which will remove everything except
the main patch series under debian/patches.
 2018-09-13 01:52:36 +01:00
Ben Hutchings 70e8277e19 aufs: Update support patchset to aufs4.x-rcN 20180910 2018-09-10 20:13:33 +01:00
Ben Hutchings 2b6dda36d9 Release linux (4.18.6-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAluRd+AACgkQ57/I7JWG
 EQlP0w/7BNDTGlfeiOzIY0XoW6gdVjRMN3jxGbZH/3mcF0ZcF+qkIpUAOYH7gcTC
 EM/LqbG4epHsdNo8A91TzcD05/GD3h4AIwi/ibecsfNDOUM9FfL7X/PGy5OoAvxR
 82mY0dK8I5n4dhSa09RUQtDSd/Tg4tOKITCosRdaB5DE9jT/jFG86kBFghkPORKQ
 UDOVAzIcFpCemJJDeEtAN5kkapvJvSSALG+B+upVNcO5w9IMylOEFSyEkukywYDm
 W8Oy8Xe/I6wC7rUdayXueGU8JLAoChtoWHe8WkLb0Gbuuw3ZEVLnltL98S0N/9R+
 tjbmIRleRK3LI7dOn7YvcBpfjSsoKIgl9uS6j0ILKEY4LAoGeNKDxepqLrw2MPM4
 yXULjzj6OQVkY6nh4wc9A9NRRTGbUzCTnrnitkmzfM0c8p3IZ29xVvSYjBIL117O
 L1bRXwt0RiVgxVkaI+TdqtvDI2wN8DEk222has7EOz0AqMZ0Il9VhFaIrRU2m/4l
 89bEU4WPMgcfSCBiT7lQV37ngT/L8odZ85HaqHyqBO63oOI5MkJmOE078tm+xsq/
 BzwnNbuFlX99jSj28ZFbUPNUBq/Lqrh9mKqL6rZ82YK5zdhWeh2ejgLWrC9nIex1
 rmjzgFV7lQ+5O5c5+01BKvNXCFPbVhN1unk4ocm40XzbTmIOsn4=
 =71I/
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.18.6-1'

Release linux (4.18.6-1).
 2018-09-06 19:56:32 +01:00
Ben Hutchings 0b9c0ab67c [rt] Refresh patches and re-enable 2018-09-06 15:27:51 +01:00
Ben Hutchings 1b231c6fe7 Merge branch 'sid' 2018-09-03 21:15:44 +01:00
Romain Perier d51682713e [rt] Update to 4.18.5-rt3 2018-08-31 17:16:36 +02:00
Ben Hutchings daab6c7f7d Merge branch 'sid' 
But don't enable the rt featureset.
 2018-08-27 18:33:21 +01:00
Ben Hutchings c8c103a72c aufs: Update support patchset to aufs4.18-20180827 (no functional change) 2018-08-27 15:38:40 +01:00
Ben Hutchings 9d3878242c [rt] Update to 4.18-rc8-rt1 and re-enable 2018-08-27 15:32:32 +01:00
Ben Hutchings e2fa147f31 [rt] Restore genpatch.py script 
This was mistakenly removed by commit 055a1807cb ("Drop RT patch").
 2018-08-27 15:26:28 +01:00
Ben Hutchings 54cc69a744 Update to 4.19-rc1 
- Drop/refresh patches as appropriate
- Disable aufs patches until they are updated upstream
 2018-08-27 15:21:43 +01:00
Ben Hutchings 99f612471f Update to 4.18-rc6 2018-07-26 19:52:20 +08:00
Ben Hutchings 16bdbaf76f Release linux (4.17.6-2). 
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAltL4ZwACgkQ57/I7JWG
 EQniUw//V7Vhq6IQ5FKEg+UHcI8b12GhOVWWVJoReQErFllaIkSOJax6GDXo9UYa
 EQ+xezR902ze99eetQfqJFqNm/fu9qi9Lc/Na3dIztFTkbonQmOOF5y5uM129wBi
 l8WKrcnGY175yuN2aQDgRZtZgMWvNy7pbreDX3i5WliOKiOYbG7ZaJvdSEQ12CjJ
 lnVctItwOhDqgXGoW8nW7YxC3Awi25Rk2dZNQNSVfa3Lq9DAA1HXsNVM7/jdMzv8
 OVE32Srq2LsWqt+dK0sARKCucVXZRDTWEjie32ZxyAISUYkuzxmLOpmfYXS+CVtj
 7gIe6nBPX1mnXSHh1CvFGJrHRDfKAtq7gfHoBSg255quuBYY9btCneVV/ebCuFR3
 OSmupwF74Kt6QMhDpe322SFQD/40gH2OEATRzgzNjaJFnWwDTx78EZIu7/SHul9g
 k6YKRyK03bGgfeTeEzsVwXUj71Fh8oF22kk1ViYpDMSEKu3xOB71poDwGmP+e11U
 rH3IV+F5ECzfiekNsbehPabG7dyY/t1TIGBmu+7rnK75EDCQzFfOI0MXEJCJG5X2
 c6QUBXcz8ygvR7Zec9kw4YeBRuDvUv4sXf8516kMc2dSwf7JY+BYyy+9Knb9Gy67
 K/Tw/4keQIgzjg52g9GxqVqI4N/DknWoe1FT3xU4uuLIgYkEilA=
 =JUfi
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.17.6-2'

Release linux (4.17.6-2).

- Drop the ABI maintenance patch
- Resolve conflict between changes to config file generation in sid
  (delete CONFIG_BUILD_SALT) and master (putting them in
  arch-dependent packages)
 2018-07-16 01:44:06 +01:00
Ben Hutchings 98b1cf0710 Fix file conflicts between debug packages where a vDSO is identical 
Closes: #872263

- kbuild: Add build salt to the kernel and modules
- [arm64,powerpc,x86] Add build salt to the vDSO
- Set BUILD_SALT equal to the release string
 2018-07-13 00:26:16 +01:00
Ben Hutchings 5866ae2a5f aufs: Update to aufs4.x-rcN 20180702 and re-enable 2018-07-01 19:44:18 +01:00
Ben Hutchings 6143dfd1bd Update to 4.18-rc2 
Drop/refresh patches as appropriate.

Disable the aufs support patchset since aufs hasn't yet been updated.
 2018-06-26 03:08:29 +01:00
Ben Hutchings 544f15ac72 aufs: Update support patchset to aufs4.x-rcN-20180611 2018-06-26 02:49:57 +01:00
Bastian Blank 055a1807cb Drop RT patch 2018-06-19 21:43:35 +02:00
Ben Hutchings c514e73827 Release linux (4.16.12-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQKmBAABCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlsKn2ZfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
 ZWJpYW4ub3JnAAoJEAVMuPMTQ89E/cYP/R31VzcQpyLuMJtYL3SqgMwZJFgFDhIw
 nTpM4xiZFPm0Ci0hcy5u9oGbrD6bSINfK3SH50d36yBJMNDWMnk4y29IAQ92VJLp
 yKobfV3TTFDeHocpMjY1CmYPu6mWckwqPDSfP+lBBvLw9iDtiVptn1oY91+utyGG
 9gJOQbLe0Ck0+aOt+AhNKSt/acYrmaIewiJhBpOzy8w/piEuOLXGhe6HYCGxT6hp
 gKBz9tBON/1e0x6I88BjD/wvPCWgBOon9c2ZrS3GEYZ3GmITPGR8tbtObucRC2iF
 g1dpu2iSTt9ZjyBQpTJlZMGrLUBu5UvQy4xvI39Qu+wWzS3sD9D1e+dzb2UT298k
 8i8zMLh8qNnd8rQpak5+LdUw/5RdFqGdh/Y95b0giaAohJtRum8SiBRSerlTVLCy
 nHI55yXP8Hnj7G0+BqCanuHrbDulPX9nYUe9bSPcATBtI4Tzbj+ToywMV2BkTYAi
 QrjSjuugSkUPjhinVZrex8ZS7qbDXTcl4PaYMms9PfMsE5hyLCtuclSLEZvGsB1g
 MuAZEHXliSdK37LoStuSljXk2ZA/d6dilLCyLoL6GbyJyeFJ5guSNKBVdIQDs5us
 Mnw9j0QHQh1bMGRNRwwcFUnLNsIT9ONUIXKOlhLtRBoLn8hreB2l4s7nMglHu8aW
 sO9HQqb5TXyc
 =Q2Gx
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.16.12-1'

Release linux (4.16.12-1).
 2018-05-28 16:56:46 +02:00
Ben Hutchings baa5254a6f [rt] Update to 4.16.8-rt3 2018-05-22 00:55:31 +02:00
Ben Hutchings b1a9e2470a Update to 4.16.10 2018-05-22 00:49:31 +02:00
Salvatore Bonaccorso 5f1b90fa69 Update to 4.16.7-rt1 and reenable 2018-05-12 10:14:20 +02:00
Ben Hutchings 00e2f5f30e kbuild: use -fmacro-prefix-map to make __FILE__ a relative path 2018-05-02 23:47:40 +01:00
Ben Hutchings 8457aba35f Update to 4.17-rc1 
- Drop patches included upstream
- Drop "Don't WARN about expected W+X pages on Xen"; the problem appears
  to have been fixed by upstream commits 2cc42bac1c ("x86-64/Xen: eliminate
  W+X mappings") and 672c0ae09b33 ("x86/mm: Consider effective protection
  attributes in W+X check")
- Drop "Kbuild: kconfig: Verbose version of --listnewconfig"; it seems
  redundant with upstream commit 17baab68d337 ("kconfig: extend output of
  'listnewconfig'")
- Drop lockdown patch to drivers/scsi/eata.c; the driver was removed
  upstream
- Refresh various other patches
 2018-04-19 23:44:22 +01:00
Ben Hutchings 39213877ab aufs: Update support patchset to aufs4.16-20180409 (no functional change) 2018-04-08 20:06:10 +02:00
Ben Hutchings 51c5591ed2 aufs: gen-patch: Fix Subject generation to skip SPDX-License-Identifier 
(cherry picked from commit 809a0521f8)

I already did this on the sid branch but for some reason it didn't get
merged to master.
 2018-04-08 20:04:22 +02:00
Ben Hutchings 765677fc1f Update to 4.16 2018-04-07 20:29:53 +02:00
Ben Hutchings 3c7088b5cd Update to 4.16-rc5 2018-03-12 02:40:37 +00:00
Salvatore Bonaccorso 0ec05d8c81 Release linux (4.14.17-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQKmBAABCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlqFl5pfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
 ZWJpYW4ub3JnAAoJEAVMuPMTQ89EQDoP/iuiGnJomZlwYf+UtxmTxZM0B1jutQ2V
 vg2/JLaocNP/QLJTRKKQnUnEbawuUvGF/vtq5kDV0XcaY3QZSbeQKkpyEpZoI5K3
 dJ8WG+EXDd/a2KVoJ/layX2JqtSVsgBOtJJkSSrhWk2tfZkhB1+9BJ54UXoTCT0A
 pWor5ycO0PUw6crlMsNz62lBwvdwoHgIhKkjpfnXOCTZQi6n6RVFvaT2uLyijZod
 0KTuWFnyMLgh1gpKKR/tqGs25ByOQH43TmtrVAYfjqua5P5CvzJaKp3UMHsDPIbN
 Uw3HB0QQ3iEg8pQJhCkrNk1LT/1Je9xb3rdoKSQ+OitTfyQnhs/eVXs3KzD3DPOc
 IJZjG/kno8d7bNWW8+ce12MPVVkAop1ZMGushyz1c3149HCtinQcymcWahD4Gyzg
 YA9w3V7ir+bvJWunKy12845XoXpxhaBVV7CbnXI02exGwbN1gBPfI6nxzf84lVcG
 Bnwy523jmAjB8h8a9HjmtwqecbnJRf+NkgQAJItniGR06B7XVSLaOnnD0dXLdOMj
 VADirfbRRU60gqBrjrMxUwMO1ArKowNzQM91pTR+jAa2mS4KzEpMmwmWMAPSTL2n
 9ODByDGf6oi9vQxxoMd1gic7cZwyzO3n/SnHSpA5IYDSeurWE1ZF3xWqPBlxIpUp
 EXiBvAThcuDs
 =jSDv
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.14.17-1'

Release linux (4.14.17-1).
 2018-02-16 00:20:10 +01:00
Salvatore Bonaccorso edfb7d0f0e Update to 4.14.16 2018-02-02 14:39:34 +01:00
Salvatore Bonaccorso d3d73f5119 [rt] Update to 4.14.15-rt13 2018-01-31 21:00:05 +01:00
Ben Hutchings 623cfd4d39 Merge branch 'sid' 
- Drop ABI maintenance patches
- Apply usbip config change in debian/config/config
 2018-01-28 19:02:08 +00:00
Salvatore Bonaccorso e53a4aa3b8 [rt] Update to 4.14.15-rt11 2018-01-28 15:50:32 +01:00
Ben Hutchings e3496974c8 Fix variable name in "arm64: add kernel config option to lock down when in Secure Boot mode" 2018-01-15 04:10:12 +00:00
Salvatore Bonaccorso 8996784cdc Release linux (4.14.12-2). 
-----BEGIN PGP SIGNATURE-----
 
 iQKmBAABCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlpQhNxfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
 ZWJpYW4ub3JnAAoJEAVMuPMTQ89EKmgP/3D1CAm0F0v9d2AfQAPv8wVQIFpWqZGM
 D1jjtinIyCGJVM0jjXKne1nwQZotVTN/SDHeGTmJVvluLsF7MBCiGTBYMThqYD/I
 DCaOwGS9go8J771dR261c1D0nnnsqTvAJIMQDcVmRoVT/KRA/ZqdwJHygX8cZ2hb
 MmSWH5szCt4n55SkJDQi4nJ0dWkj5ZiKf4i6+o5+NrY2PJRTYlIthnCvHDuTsY+r
 Nade3ITAX82xRjFUmeM6JUc1xScLoXxvQhfuIRyIk2atQBCZEvTXvwC8cuyJWBo+
 TUdWqRdxEslqCTJ7/boH9nsWO4Hm+UiVHFwUbFR+xpPqgdDvkHAZII5tk9pzNSxU
 CWAWtKhRJxl8Ne452bCWtRi8TlvXNi4F7wbM9/AygT6dJoTidKYkAi+WcRco800G
 Yx5uuLfj88tBm4VFZJot9W1FKOtml0w+25I4uuua2lSwIS6/25+OZ1qMOkEXbE+v
 nIZHX2UTZYda8PNzZlMClfwiHYKKd+2LnGpdc0oEexwRxLtm/YFKHkavV396E7o1
 FzlogUJqsofgJOEYczBcjiuEW9EKXbeRCx/TPm/MVHz2Qn0hCWGWSnR5h/8T7KZ9
 GuOTk8+5c0puYK35+NC5M9/0XboP+hOEccuaJS4abu4tHok8jU72SX3KF+8j4dl8
 OxVql0ToPmdI
 =wQ4Q
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.14.12-2'

Release linux (4.14.12-2).
 2018-01-06 14:30:49 +01:00