| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
| |
Drop patches applied upstream
|
| |
|
|\
| |
| |
| | |
Release linux (5.18.14-1).
|
| |
| |
| |
| |
| | |
The mitigations for RETBleed are currently ineffective on i386,
but without this they would wrongly be reported as active.
|
|\ \
| | |
| | |
| | |
| | |
| | | |
[x86,arm64,armhf] Add rtla package for Real-Time Linux Analysis tools
See merge request kernel-team/linux!512
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Patch the upstream Makefile to allow appending to CFLAGS and LDFLAGS
- Patch the upstream Makefile to fix command symlinks
- Add control file template
- Add the necessary glue in rules.real and rules.d
- Add manual page symlinks mirroring the command symlinks
I'm only adding this for architectures that we build an RT kernel for.
|
|/ /
| |
| |
| | |
Drop all the RETbleed patches which are included in it.
|
|\|
| |
| |
| |
| | |
- Drop RT patch changes
- Keep ABI as trunk
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
WireGuard assumes that CONFIG_ANDROID implies Android power
management, i.e. user-space suspending the system automatically at
short intervals, and so does not clear keys after a suspend/resume
cycle. Debian systems don't do that kind of power management but we
do set CONFIG_ANDROID on some architectures as a dependency of Binder.
Remove this test that does the wrong thing for us.
|
| |
| |
| |
| |
| |
| | |
"tools/perf: pmu-events: Fix reproducibility" adds a callback function
which does not use all its parameters. Since perf wrongly defaults to
using -Werror, this breaks custom builds.
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
In binutils 2.38.50, the init_disassemble_info() function in
libopcodes takes an extra parameter.
This only affects custom builds, not package builds, because we do not
allow bpftool or perf to be linked with libbfd (and implicitly, not
with libopcodes either).
|
| |
| |
| |
| | |
- Drop one patch that's included in it
|
| | |
|
| |
| |
| |
| | |
CVE-2022-29901, CVE-2022-29901
|
| |
| |
| |
| |
| | |
Drop "virtio: disable notification hardening by default" applied
upstream.
|
| |
| |
| |
| | |
This fixes a regression in 5.19-rc1.
|
|/
|
|
| |
Refresh our patches.
|
| |
|
| |
|
|
|
|
| |
Apply solution only once it is accepted upstream.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add bug closer for Debian bug #1012655
Add CVE id reference for CVE-2022-32981
Drop patches applied upstream
[rt] Refresh patches for context changes
Cleanup debian/changelog file
Add Debian bug closer for #1012054
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add CVE id reference for CVE-2022-1852
Add CVE id reference for CVE-2022-1966
Add CVE id reference for CVE-2022-1972
Add reference to ZDI-CAN-17291
Drop patch applied upstream
Cleanup debian/changelog file
|
|
|
|
| |
Closes: #1012298
|
|
|
|
| |
Closes: #1011168
|
|
|
|
|
|
|
|
|
|
| |
At some point in development I changed the name of this option from
"igpu_off" to "intgpu_off", but didn't update the length used for
matching it.
The patch description also had the earlier name.
Thanks: Markus Kolb
|
|\
| |
| |
| |
| |
| | |
Release linux (5.17.11-1).
Drop patches applied upstream
|
| |
| |
| |
| |
| |
| | |
This reverts commit 1be71e246c5564a650cf22f1d0721981b6abc7d2.
We have actually depending changes so we cannot pick this up for 5.17.y.
|
| | |
|
| |
| |
| |
| | |
(CVE-2022-1789)
|
| | |
|
| | |
|
| | |
|
| |
| |
| |
| | |
dependency from X86_X32 to X86_X32_ABI
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| | |
The function definitions that used to depend on
CONFIG_DEBUG_INFO_BTF_MODULES are now unconditional, so we only need
to deal with the struct module members. And there seems little point
in adding a config symbol for this, so make the member definitions
unconditional.
|
|/
|
|
|
|
|
|
|
|
|
|
|
| |
When more then a simple rebase is done, a relevant upstream commit ID is
mentioned between brackets.
The debian/android-enable-building-ashmem-and-binder-as-modules.patch
has been partially 'reverted' as upstream removed support for ashmem
entirely.
The debian/module-avoid-abi-changes-when-debug-info-is-disabled.patch
has been substantially changed and was done to 'fix' salsa's CI and I
don't know how to handle that.
|
|
|
|
|
|
|
| |
This builds the perf Python bindings (perf.cpython-*.so) and
adds them to the linux-perf package.
Signed-off-by: Adriaan Schmidt <adriaan.schmidt@siemens.com>
|
|
|
|
| |
Drop patches applied upstream
|
|\
| |
| |
| |
| |
| |
| | |
Release linux (5.16.12-1).
Replace Spectre v2-type Branch History Buffer patches with upstream
versions for mainline.
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
CVE-2022-0002)
- [x86] speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE
- [x86] speculation: Add eIBRS + Retpoline options
- Documentation/hw-vuln: Update spectre doc
- [x86] speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting
- [x86] speculation: Use generic retpoline by default on AMD
- [x86] speculation: Update link to AMD speculation whitepaper
- [x86] speculation: Warn about Spectre v2 LFENCE mitigation
- [x86] speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT
|
| |\
| | |
| | |
| | |
| | |
| | | |
module: Avoid ABI changes when debug info is disabled
See merge request kernel-team/linux!452
|
| | | |
|
| |/
| |
| |
| |
| |
| | |
Drop patches applied upstream
Cleanup debian/changelog file
|
| |
| |
| |
| | |
Drop patches applied upstream
|
|\|
| |
| |
| |
| |
| | |
Release linux (5.16.11-1).
Drop patches applied upstream
|
| |
| |
| |
| | |
(CVE-2022-25636)
|
| | |
|
| | |
|
| | |
|