| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
| |
Update to the most recent kernel version and do an oldconfig with
default values.
Tested-by: Roland Hieber <rhi@pengutronix.de> on rpi1-b, rpi-zero-w
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
Update to the latest toolchain, which was released this week.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
A new kernel is out, update all platforms.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
A new kernel is out, so let's update DistroKit.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
2019.09.1 is out, use it.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
Linux 5.4 is out, update the kernel on all platforms.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
| |
Linux 5.3 is out, so we update the kernel to the new version.
The config is oldconfiged with defaults.
Signed-off-by: Björn Esser <b.esser@pengutronix.de>
|
|
|
|
|
|
|
|
| |
The filesystem parameter description parser validation is not useful
except when working on the mount interface and prints confusing messages
during boot.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
Linux 5.2 is out, so we update the kernel to the new version.
The config is mostly oldconfiged with defaults, but we enable
CONFIG_NULL_TTY and CONFIG_COUNTER.
The OMAP hardware random number generator was applied in the upstream
kernel, so we can remove it here.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
systemd requires UTS_NS, so enable it in the kernel.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
The UNWINDER_ARM helps to get proper stack traces.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
The new kernel has been released today, so update.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
This platform supports it, enable it.
Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
|
|
|
|
|
|
|
|
| |
The compiler version is part of the kernelconfig, so changing the
toolchain changes the kernelconfig too. Update the kernelconfig with a
simple 'ptxdist oldconfig kernel'.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
Update the kernel to Linux 5.0
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
If the bootloader has enabled the watchdog, the intention is usually to
monitor the whole boot process.
Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Virtual terminal support is not needed on most embedded systems.
Any available displays are not uses the kernel logging or consoles.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
The typical embedded use-cases are more sensitive to latency than
throughput. Thus a fully preemptible kernel is preferred.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Keeping userspace processes without CAP_SYS_RAWIO from writing to low pages
can help reduce the impact of kernel NULL pointer bugs. 64kB is recommended
by default. 32kB is recommended on ARM.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
Found by "reason".
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Enable ARM idle if possible. Before Linux kernel version 4.8,
networking on i.MX6 may be broken.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
"reason" detected that we have initrd support, but we don't use it.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Auditing support is not needed on most embedded systems. Except
INTEGRITY is enabled.
We don't have INTEGRITY, so disable AUDIT as well.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Randomizes the freelist order used on creating new pages. This
security feature reduces the predictability of the kernel slab
allocator against heap overflows.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Namespace support is not needed on most embedded systems (except NET_NS for
systemd).
Switch it off.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
Only root needs access to dmesg by default.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
fq_codel helps fight the network bufferbloat problem. It is believed
to be a good default with no tuning required for most workloads.
Enable it.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
| |
CRYPTO_SHA256 is set as a dependency of several modules, so
CRYPTO_SHA256_ARM shold be used too.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
This option checks for a stack overrun on calls to schedule(). If the
stack end location is found to be overwritten, always panic as the
content of the corrupted region can no longer be trusted. This is to
ensure no erroneous behaviour occurs which could result in data
corruption or a sporadic crash at a later stage once the region is
examined. The runtime overhead introduced is minimal.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
| |
RPi doesn't have any usable storage for swap.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
| |
ext2 and ext3 have been replaced by ext4, and those two file systems are
not used on the target.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
| |
/proc/config.gz is useful for debugging or rebuilding the kernel.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
| |
This protects against using obviously wrong memory regions when copying
memory to/from the kernel.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
|
| |
The kernel lockup detector should be active, as it's low overhead and
potentially provides useful debug output when the system is failing due
to a lockup.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
| |
Enable some debug options needed for 'ss'.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
To avoid security issues, only sync (MAGIC_SYSRQ_DEFAULT_ENABLE == 0x10)
is allowed by default. Note: with systemd, another value is always set
at runtime (also 0x10 by default) so the runtime default should be
changed there. Suggested by 'reason' checker.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Alexander Dahl <post@lespocky.de>
|
|
|
|
|
|
|
|
| |
For lm-sensors to be able to read the RPi temperatur sensor we need
CONFIG_THERMAL and CONFIG_HWMON, see
https://github.com/groeck/lm-sensors/issues/30 for details.
Signed-off-by: Alexander Dahl <post@lespocky.de>
|
|
|
|
| |
Signed-off-by: Alexander Dahl <post@lespocky.de>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
reason suggests:
--- reference
+++ suggested
@@ -1 +1,11 @@
-systemd_cgroup_bpf: {}
+systemd_cgroup_bpf:
+ history:
+ systemd_ptxdist.ref:
+ description: |
+ Since systemd 235 (present in PTXdist 2018.01) BPF programs
+ attached to cgroups are used to implement some of the
+ firewalling features. This requires kernel support.
+ analyzer: kconfig.KernelConfig()['CGROUP_BPF']
+ matched: (kconfig.KernelConfig().version >=
+ kconfig.KernelConfig().parse_version('4.10') and
+ kconfig.PTXBSPConfig().version >=
+ kconfig.PTXBSPConfig().parse_version('2018.01'))
+ value: True
+ value: False
CGROUP_BPF depends on CONFIG_BPF_SYSCALL, so enable that too.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
|
| |
Use the LED related settings from bcm2835_defconfig. Now the ACT LED
blinks like an heartbeat.
Tested-by: Roland Hieber <rohieb@rohieb.name>
Signed-off-by: Alexander Dahl <post@lespocky.de>
|
|
|
|
|
| |
Tested-by: Roland Hieber <rohieb@rohieb.name>
Signed-off-by: Alexander Dahl <post@lespocky.de>
|
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <rohieb@rohieb.name>
|
|
|
|
|
|
| |
This makes systemd compile again.
Signed-off-by: Roland Hieber <rohieb@rohieb.name>
|