debian-packaging
/
linux
8
0
Fork 0
Code Releases Activity
13,570 Commits 2 Branches 0 Tags 493 MiB
Commit Graph

8260 Commits

Author SHA1 Message Date
Hans van Kranenburg edc7c6ee64 [x86] Fix booting as Xen dom0 
This patch is from the tip repo, and will show up in 4.19 later.
 2018-12-12 15:57:21 +01:00
Ben Hutchings 17d52832bc Merge branch 'libbpf-pr' into 'master' 
Add libbpf0, libbpf-dev packages (#914428)

See merge request kernel-team/linux!74
 2018-12-09 21:40:33 +00:00
Hilko Bengen 9eeeda7c0d Add versioned libbpf, libbpf-dev package (Closes: #914428) 2018-12-09 22:11:42 +01:00
Ben Hutchings 1240fb3ac3 integrity: Disable INTEGRITY_TRUSTED_KEYRING (Closes: #865277) 2018-12-08 21:34:33 +00:00
Ben Hutchings a5cdd1f2cb Merge branch 'master' of salsa.debian.org:nsc-guest/linux 2018-12-08 18:58:30 +00:00
Salvatore Bonaccorso d7534bd9b6 vhost/vsock: fix use-after-free in network stack callers (CVE-2018-14625) 2018-12-08 15:40:45 +01:00
Salvatore Bonaccorso a69098a3f1 Prepare to upload to unstable 
Drop the ~exp1 from the version.

Set ABI to 1.
 2018-12-08 15:05:46 +01:00
Hilko Bengen 4f1f7c5735 Add patches to build libbpf.so with SONAME, link against libelf 2018-12-08 15:02:05 +01:00
Salvatore Bonaccorso fae4befcc9 Merge branch 'sid' 2018-12-08 15:02:01 +01:00
Nicolas Schier 3436e1c735
ovl: permit overlayfs mounts in user namespaces (Closes: #913880) 
Permit overlayfs mounts within user namespaces to allow utilisation of e.g.
unprivileged LXC overlay snapshots.

Except by the Ubuntu community [1], overlayfs mounts in user namespaces are
expected to be a security risk [2] and thus are not enabled on upstream
Linux kernels.  For the non-Ubuntu users that have to stick to unprivileged
overlay-based LXCs, this meant to patch and compile the kernel manually.
Instead, adding the kernel tainting 'permit_mounts_in_userns' module
parameter allows a kind of a user-friendly way to enable the feature.

Testable with:

    sudo modprobe overlay permit_mounts_in_userns=1
    sudo sysctl -w kernel.unprivileged_userns_clone=1
    mkdir -p lower upper work mnt
    unshare --map-root-user --mount \
        mount -t overlay none mnt \
              -o lowerdir=lower,upperdir=upper,workdir=work

[1]: Ubuntu allows unprivileged mounting of overlay filesystem
https://lists.ubuntu.com/archives/kernel-team/2014-February/038091.html

[2]: User namespaces + overlayfs = root privileges
https://lwn.net/Articles/671641/

Signed-off-by: Nicolas Schier <nicolas@fjasle.eu>
 2018-12-08 12:34:31 +00:00
Salvatore Bonaccorso 014c728272 Update to 4.19.8 
Drop patches applied upstream in 4.19.8

Cleanup debian/changelog file

Add CVE id for CVE-2018-18397
 2018-12-08 13:27:04 +01:00
Salvatore Bonaccorso 4237db03be blk-mq: punt failed direct issue to dispatch list 2018-12-08 11:28:12 +01:00
Salvatore Bonaccorso 771f295a0f blk-mq: fix corruption with direct issue 
Closes: #915666
 2018-12-06 17:39:15 +01:00
Salvatore Bonaccorso 1966fd8d99 Add CVE id information for CVE-2018-16862 
Gbp-Dch: Ignore
 2018-12-05 22:16:56 +01:00
Salvatore Bonaccorso 72b28400e1 Move debian/changelog entry to upstream entry for CVE-2018-19406 
Gbp-Dch: Ignore
 2018-12-05 20:44:39 +01:00
Romain Perier 5222653db6 Update to 4.19.7 2018-12-05 19:59:32 +01:00
Romain Perier 36bf3a2656 Update to 4.19.5-rt4 2018-12-04 21:08:34 +01:00
Salvatore Bonaccorso 37094dbb55 [x86] KVM: LAPIC: Fix pv ipis use-before-initialization (CVE-2018-19406) 2018-12-03 21:11:24 +01:00
Ben Hutchings 64dab5b29a libcpupower: Hide private function and drop it from .symbols file 
This avoids an FTBFS after this function was renamed in 4.19.6.
 2018-12-02 19:23:13 +00:00
Ben Hutchings 5a00e93df2 debian/rules: Mark more targets as phony 2018-12-01 19:18:56 +00:00
Ben Hutchings 63b7ced1fc debian/rules.real: Mark most targets as phony 2018-12-01 18:59:32 +00:00
Ben Hutchings 94a9229d27 Merge branch 'tools' into 'master' 
Split build rules for tools to fix build without unversioned tools

See merge request kernel-team/linux!69
 2018-12-01 18:53:13 +00:00
Salvatore Bonaccorso 53423211c4 Update to 4.19.6 2018-12-01 11:38:04 +01:00
Luca Boccassi b193cef0c3 Override dbg-package-missing-depends in source too 
Lintian now warns about it on the source package as well.

Signed-off-by: Luca Boccassi <bluca@debian.org>
 2018-11-30 14:03:52 +00:00
Luca Boccassi 6de833bc7e Do not ship python2-only call-graph-from-sql. 2018-11-30 14:03:52 +00:00
Luca Boccassi f5f169ba99 Split build rules for tools to allow skipping them. 
Split the rules in d/rules.real so that the [un]versioned_tools
knobs can be used to avoid building them.

This is necessary since the build-dependency were moved to be
conditional on those knobs, so the build fails when the
unversioned tools are set to disabled as libpci-dev is not
installed but the tools are built and fail due to it missing.

Signed-off-by: Luca Boccassi <bluca@debian.org>
 2018-11-30 14:03:52 +00:00
Uwe Kleine-König 983a169e24 Enable ATH10K_USB as a module 2018-11-30 10:39:33 +01:00
Romain Perier 4b1506935b [x86] Enable support for EDAC on the Intel Pondicherry2 Integrated Memory 
Controller (Closes: #914946)
 2018-11-29 16:15:55 +01:00
Uwe Kleine-König f1dc3f5614 d/changelog: move post 4.19.5-1_exp1 changes to a new log entry 
Fix a typo on the way
 2018-11-28 12:22:26 +01:00
Marcin Juszkiewicz 6ccfef8c4b config/arm64: enable HiSilicon LPC for serial/ipmi access 
D03 uses LPC for serial port
D0[356] use LPC to IPMI access
 2018-11-28 11:05:11 +01:00
Marcin Juszkiewicz 9915166d6d config/arm64: enable IPMI watchdog and power off 2018-11-28 11:05:11 +01:00
Marcin Juszkiewicz ef82a0d79f config/arm64: enable PMU for several server cpus 2018-11-28 11:05:11 +01:00
Marcin Juszkiewicz a068e60575 config/arm64: enable PCI Express hotplug 2018-11-28 11:05:11 +01:00
Marcin Juszkiewicz a7888cf5d6 config/arm64: enable ACPI IPMI support 2018-11-28 11:05:11 +01:00
Bastian Blank 182e013b33 Prepare to release linux (4.19.5-1~exp1) 2018-11-27 20:07:15 +01:00
Salvatore Bonaccorso f183308f04 Update to 4.19.5 2018-11-27 16:32:45 +01:00
Vagrant Cascadian 5a64bc1733 debian/config/config: Enable Z3FOLD as a module. 2018-11-25 20:33:58 -08:00
Ben Hutchings d4107bf973 Revert "[arm64] Add hisilicon drivers to the nic-modules udeb." 
This reverts commit 542ffe7fe2.
All drivers built under drivers/net/ethernet are included already
and should not be explicitly listed.

Move the bug closure to the previous log line.
 2018-11-23 19:51:52 +00:00
Ben Hutchings 3cf9003132 Release linux (4.18.20-2). 
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAlv4VSMACgkQ57/I7JWG
 EQntFhAAnpfhwMOijDbLS7TCTp3c/onNjP6KgSVHWUUHdOAdXmT9Nk1HNVxgxqed
 7M8k8RFkRh+YNj3NkSngP2aSW4sDVETf7cZ1pFU9travQYw611vb7CgU8PMnE2a4
 BGSX79m0uiJcSDI10EcEjM8IF69P4AS5CBIkn8WjdiVjv3feByfZzLvcOcC6SILV
 GxcAhq1hpk1KJnKj7cEzqZ5zaBbRxdP4pj+YJN/PglIfCndgiClwZjvZgPYbuJLX
 lS+t1PNBmuPVQgwAvORf6r+dBjIdsThWq03x1/MQGPjeWIclBGWTQCLBXd0KTJkD
 RejX7WU3QYh01XBTGAiVplpcQi3gO6IDb7qSvUTyfB1UmoCNSb7GfZTkopgPnYJr
 Y7rrIRaTHHBZgCUoiPWw6mrpuPR/F1P4c6zsXBQ2jdqRWtx6Gqe8CPzbY9ps2TI9
 oaozpazGgUylv18iRmlzS4M9/sxhKoyUDGAgU6+XNhV8rNeyK2MErGaEoOxk8UGj
 R9IgrJQ7xJIQw8TrQk11QjaQI00ENtE8ntAIfZHnScwyK1yh1a9gVWMBp5Skeqe7
 fQBwHB4ok1fnfy+8RnL6Khv7aDqPk5BHQnOZSTpXP3tdohYU8ocdcKrLt4+aaRs9
 YaSHhOyPh5eivuxV6fcIDEfgJLzjAHe7NcEa+XGNmSPu0pwjj5k=
 =TQTn
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.18.20-2'

Release linux (4.18.20-2).
 2018-11-23 19:31:13 +00:00
Ben Hutchings e6434a5655 Documentation/media: uapi: Explicitly say there are no Invariant Sections 
Closes: #698668

This clarification has now been signed-off by the upstream authors.
 2018-11-23 19:31:06 +00:00
Ben Hutchings d4501a4879 Prepare to release linux (4.18.20-2). 2018-11-23 19:15:55 +00:00
Ben Hutchings 23be394424 linux-kbuild: Include scripts/subarch.include (Closes: #910348) 
(cherry picked from commit e7923f96b5)
 2018-11-23 19:14:11 +00:00
Uwe Kleine-König 542ffe7fe2 [arm64] Add hisilicon drivers to the nic-modules udeb. 2018-11-23 10:48:46 +01:00
Uwe Kleine-König dfa8487f80 [arm64] Enable hns3 network driver as a module 2018-11-23 10:47:03 +01:00
Salvatore Bonaccorso 11862c6bef Update to 4.19.4 2018-11-23 08:42:33 +01:00
Romain Perier 6c58683898 [x86] Enable DisplayPort CEC-Tunneling-over-AUX HDMI support (Closes: #913199) 2018-11-22 21:00:48 +01:00
Ben Hutchings c20b784198 Release linux (4.18.20-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAlv18cwACgkQ57/I7JWG
 EQnmrBAA0cIq67bC0g/calV1FyAnByc88h15W2BCN8+dD25PKRlsRsbSvQLx/E6J
 mEwPMu6bw/yJuIA8ADTFpjh4CmulBhQMC/cpQHy82F5umt/wNAPlhryDc0n96eRX
 bJfh3dzboyFEWBOSUgb6EWEdWZX1tMblf4ZpX1LfP5L/pJyq/Jz1xrpz31nGcz9E
 2m4mpovTAT2N34I9FF9PSuaYlPxljU/eZe7wyDmM+leMnmV4MGEOpV+CMNEohLsp
 8APxTJim6ZJXJ4ppl/Qk7yW1glTL3q5OqI+s5YB4RBKI4KBN/N3FF0PwWQ+L76bj
 B6b3nKT4PZA4V6Y6OEY8Q53NxjHmRJo5opG9Xp3Kr4HO0PZHH9Ih/YApaZipSDLg
 t3i/C05I/Jss2e6FZ5Ocx9L/nhzoEv9Lt0K2P6nxMJgc5U7lcTaiehcrVqQ2oBhO
 QZoEwUh9G8p5dnll/MTf3nj4UzZOimr2RSpktNT8w4kBEVAFFfZL5hGdk1UmBQTu
 peAPksjndtfjWvvzlhnWu3JoFMZ+J5yA8l7t8HwKI5yIlfJaM4QbjOb8YqsZQRNR
 qUxXxgn85o7QdSlCX/JFSK5fBxRphZHDtyWt9wTp1Ko0PjNtHLGv2oWj+SdvrJWu
 X0otIjqlEMMVCcZDlrzXboU6Cxae9FGXk6yzM5QfE1/D7F4tEuI=
 =E5AV
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.18.20-1'

Release linux (4.18.20-1).

* [rt] Drop all changes from 4.18-rt
* Drop added patches which are already in 4.19
* Drop ABI bump
 2018-11-22 00:28:54 +00:00
Ben Hutchings 397f2ab6e1 Update to 4.19.3 2018-11-22 00:15:29 +00:00
Ben Hutchings d16d94111b debian/changelog: Drop full list of changes for 4.19.{1,2} 
This will be a full version update for unstable (4.18-4.19), so there
is little point in noting just the changes made in stable updates.
 2018-11-22 00:10:59 +00:00
Ben Hutchings deeb2239ba debian/source/options: Delete redundant compression setting; satisfy lintian 
The default compression for the Debian tarball has been xz since dpkg
1.16.5 (pre-wheezy).  lintian now warns about setting the compression
option, even though we don't change the default.
 2018-11-21 21:31:06 +00:00