Commit Graph

314 Commits

Author SHA1 Message Date
Marek Marczykowski-Górecki
3d25e69812 config: add AppArmor, make both SELinux and AppArmor disabled by default
If the VM would want to use those mechanisms, it can always enable them.
But do not confuse system without support for them with those
mechanisms.
This is especially for fedora-21-minimal template, which does not have
script to disable SELinux, thus the template is unusable then.
2015-06-21 00:10:11 +02:00
Wojtek Porczyk
0adbe73ad8 spec: BuildRequires: bc
Apparently.
2015-05-07 01:26:44 +02:00
Marek Marczykowski-Górecki
ecacb13980 Update gitignore for new packages location
(cherry picked from commit 87a146357e)
2015-04-24 19:29:06 +02:00
Marek Marczykowski-Górecki
5c4b82e16d Use packages built for dom0 to get kernel-devel for VM
(cherry picked from commit 04553f92a8)
2015-04-24 19:29:06 +02:00
Marek Marczykowski-Górecki
cec6ee8777 Use "gpgv" to verify kernel archive signature 2015-04-17 17:38:58 +02:00
Marek Marczykowski-Górecki
ef2d6e118a version 3.18.10-2 2015-03-30 20:48:37 +02:00
Marek Marczykowski-Górecki
630574c036 Update config: enable dummy_hcd and gadgets, disable modules signing
We use dummy-hcd to have at least one USB controller in every VM - some
software expect to have it (lsusb for example, otherwise it crashes).
Gadgets are just an addition which can be used there for development
purposes.

Also disable modules signing as we don't use it.
2015-03-30 20:07:01 +02:00
Marek Marczykowski-Górecki
e934aedec6 version 3.18.9-2 2015-03-25 05:03:10 +01:00
Marek Marczykowski-Górecki
c637c1b8b8 Sync configuration with Fedora
Besides enabling some overlooked drivers, it fixes major problems with
loop driver in dom0 and PCI passthrough in VM.
2015-03-22 04:12:46 +01:00
Marek Marczykowski-Górecki
18ac9d8779 Fix deadlock on /proc/xen/xenbus, enable CONFIG_FHANDLE needed by udevd 2015-03-22 04:12:45 +01:00
Marek Marczykowski-Górecki
7905b0b2ba Use VM kernel additions from qubes-kernel-vm-support package
This way the same files could be used for building kernel-qubes-vm
package and for building VM kernel files manually
2015-03-22 04:12:45 +01:00
Marek Marczykowski-Górecki
cb7604e53d version 3.18.9-1 2015-03-18 20:46:43 +01:00
Marek Marczykowski-Górecki
c67443f5f9 version 3.18.7-1 2015-03-04 14:43:34 +01:00
Marek Marczykowski-Górecki
f8f5cce6a6 version 3.17.1-1 2014-10-24 02:25:15 +02:00
Marek Marczykowski-Górecki
bb54078b2d version 3.17.0-1 2014-10-16 15:23:16 +02:00
Marek Marczykowski-Górecki
a784eee66f rpm: do not fail when no firmware was built 2014-07-08 02:05:19 +02:00
Marek Marczykowski-Górecki
fe3441e052 version 3.12.23-1 2014-06-27 17:31:15 +02:00
Marek Marczykowski-Górecki
6fe4b2ac00 Add DispVM balloon driver fix and backport some other fixes (#868) 2014-06-27 17:21:07 +02:00
Wojciech Zygmunt Porczyk
7025371279 kernel.spec: fixed indentation (tabs vs spaces) 2014-06-10 12:48:22 +02:00
Wojciech Zygmunt Porczyk
0f343a09eb kernel.spec: BuildRequires: dracut
/sbin/dracut is invoked from %install
2014-06-09 19:04:17 +02:00
Marek Marczykowski-Górecki
011aaf8c54 version 3.12.21-1 2014-06-06 05:32:29 +02:00
Marek Marczykowski-Górecki
a2dcf29ea2 rpm: drop xen dependency
Kernel itself do not strictly require xen installed. qubes-core-dom0
package requires it and have own dependency.
2014-05-13 00:17:59 +02:00
Marek Marczykowski-Górecki
590e9b48b8 rpm: include kernel directory itself in package (#849)
Otherwise it will not be uninstalled.
2014-05-12 17:41:04 +02:00
Marek Marczykowski-Górecki
2270b57f16 rpm: prevent removal of still used kernel version (#848) 2014-05-12 17:37:54 +02:00
Marek Marczykowski-Górecki
295372ea9e version 3.12.18-1 2014-04-27 12:02:46 +02:00
Marek Marczykowski-Górecki
0fe484c606 rpm: fix kernel version in Provides: header 2014-04-27 12:02:45 +02:00
Marek Marczykowski-Górecki
6febee6aaa config: enable user access to cryptoapi
Required for use TrueCrypt containers with cryptsetup.
2014-04-27 11:09:40 +02:00
Marek Marczykowski-Górecki
5adf12494f config: disable userspace helper for firmware loader
This isn't needed for standard firmware locations. Furthermore
systemd-udev ignore such requests, so it causes 30s delay (timeouts).
2014-04-27 11:05:30 +02:00
Marek Marczykowski-Górecki
0942a771c7 version 3.12.17-1 2014-04-23 12:51:53 +02:00
Marek Marczykowski-Górecki
60b0da51cb rpm: do not build empty debuginfo package
The kernel is compiled without debug symbols, so kernel-debuginfo
package was useless. If one want debuginfo package, he/she need to
reenable it *and* compile kernel with debug symbols (which need a lot of
disk space).
2014-04-23 12:49:31 +02:00
Marek Marczykowski-Górecki
8c7c726111 version 3.12.14-4 2014-04-08 22:09:20 +02:00
Marek Marczykowski-Górecki
a0f9bcf6eb spec: hide non fatal qubes-prefs warning
And explain why it isn't fatal...
2014-04-08 05:04:08 +02:00
Marek Marczykowski-Górecki
49d23df60b version 3.12.14-3 2014-04-02 19:01:25 +02:00
Marek Marczykowski-Górecki
87fc9fcc13 Update patch for XSA 90 2014-04-02 14:34:01 +02:00
Marek Marczykowski-Górecki
b6415da897 version 3.12.14-2 2014-04-02 03:21:35 +02:00
Marek Marczykowski-Górecki
6dd4d86113 Apply "PCI: Add x86_msi.msi_mask_irq() and msix_mask_irq()" (#811) 2014-04-02 03:21:01 +02:00
Marek Marczykowski-Górecki
a2465eb0e3 Apply XSA 90
The only vulnerable versions are >=3.12-rc1.
2014-04-02 03:07:19 +02:00
Marek Marczykowski-Górecki
927942a2c0 Include kernel-devel packages in VM repository
Add dummy kernel-devel.spec, used only in update-repo target.
2014-03-24 02:28:20 +01:00
Marek Marczykowski-Górecki
32c1177e01 version 3.12.14-1 2014-03-11 03:50:52 +01:00
Marek Marczykowski-Górecki
b6f30a4734 Fix handling kernel version
Previous regex incorrectly handle 3.13 version.
2014-03-11 03:46:21 +01:00
Marek Marczykowski-Górecki
599a6f01c8 Switch to xz source packages
kernel.org no longer provide bz2 packages.

Signed-off-by: Marek Marczykowski-Górecki <marmarek@invisiblethingslab.com>
2014-03-10 18:36:53 +01:00
Marek Marczykowski-Górecki
55e12b2859 version 3.11.10-1 2014-02-15 10:14:18 +01:00
Marek Marczykowski-Górecki
4e9aa16f79 Fix debuginfo package - include vmlinux
Based of Fedora kernel.spec
2014-01-27 14:52:05 +01:00
Marek Marczykowski-Górecki
3c68dfe400 Increase size of modules.img to 400MB
Currently its almost full. Also installing custom drivers is rather hard
with no additional space in /lib/modules...
2014-01-23 04:54:28 +01:00
Marek Marczykowski-Górecki
e44ecd3778 version 3.11.1-2 2013-09-30 05:31:49 +02:00
Marek Marczykowski-Górecki
76301e8cc5 Fix kernel-devel package
Include missing includes, do not create empty version.h in old location.
2013-09-29 04:20:42 +02:00
Marek Marczykowski-Górecki
96d320d4e0 version 3.11.1-1
Finally ACPI S3 patches are fully integrated in upstream kernel.
This commits comes with updates for other patches and of course kernel
config.
2013-09-20 05:31:38 +02:00
Marek Marczykowski
bd5d0c63a3 version 3.9.2-1 2013-05-24 04:31:00 +02:00
Marek Marczykowski
52b3981bf2 Apply ACPI C-states fix on S3 resume 2013-05-06 07:22:16 +02:00
Marek Marczykowski
c0a145a129 u2mfn: change default /proc/u2mfn permissions
It is set to 666 by init scripts anyway. Set defaults here, as scripts
are not working in all the cases (DispVM audio problem).
2013-04-17 13:16:37 +02:00