| Commit message (Collapse) | Author | Age | Files | Lines |
... | |
|
|
|
|
|
|
| |
Linux 5.3 is out, so we update the kernel to the new version.
The config is oldconfiged with defaults.
Signed-off-by: Björn Esser <b.esser@pengutronix.de>
|
|
|
|
|
|
| |
A new OSELAS.Toolchain is out, with gcc-9.2.1 and glibc-2.30.
Signed-off-by: Björn Esser <b.esser@pengutronix.de>
|
|
|
|
|
| |
This firmware was taken from the official firmware repository at:
https://github.com/raspberrypi/firmware/commit/3bba1909a004fb34d5b01db2c319976f33d8eb1d
|
|
|
|
|
|
| |
A new ptxdist version is out, use it.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
A new ptxdist version is out, so we migrate Distrokit.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
| |
The filesystem parameter description parser validation is not useful
except when working on the mount interface and prints confusing messages
during boot.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
Linux 5.2 is out, so we update the kernel to the new version.
The config is mostly oldconfiged with defaults, but we enable
CONFIG_NULL_TTY and CONFIG_COUNTER.
The OMAP hardware random number generator was applied in the upstream
kernel, so we can remove it here.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
systemd requires UTS_NS, so enable it in the kernel.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
Keep all new features on their default values for now.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
We have a new version; update.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
The UNWINDER_ARM helps to get proper stack traces.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
The new kernel has been released today, so update.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
A new ptxdist version has been released, update.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
A new ptxdist version has been released, update.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
This fixes an errors in systemd.get, which only happened when that
systemd tarball was not already downloaded previously:
ptxdist: error: Wrong md5sum for 'systemd' (.../src/systemd-241-7-ga09c170122cf.tar.gz)
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
This platform supports it, enable it.
Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
|
|
|
|
|
|
|
|
| |
The compiler version is part of the kernelconfig, so changing the
toolchain changes the kernelconfig too. Update the kernelconfig with a
simple 'ptxdist oldconfig kernel'.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This setting was introduced in PTXdist 2019.03.0:
Generate code to prevent stack clash style attacks. When this
option is enabled, the compiler will only allocate one page of
stack space at a time and each page is accessed immediately after
allocation. Thus, it prevents allocations from jumping over any
stack guard page provided by the operating system.
Make use of it to get more secure binaries with gcc-8's new
-fstack-clash-protection option.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
Update to OSELAS.Toolchain-2018.12, which has gcc 8.2.1 and glibc 2.28.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
Use the default config values.
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
|
|
|
|
|
|
| |
Update the kernel to Linux 5.0
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
A new ptxdist release is availabe, update to 2019.02.0.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
If the bootloader has enabled the watchdog, the intention is usually to
monitor the whole boot process.
Signed-off-by: Rouven Czerwinski <r.czerwinski@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Virtual terminal support is not needed on most embedded systems.
Any available displays are not uses the kernel logging or consoles.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
The typical embedded use-cases are more sensitive to latency than
throughput. Thus a fully preemptible kernel is preferred.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Keeping userspace processes without CAP_SYS_RAWIO from writing to low pages
can help reduce the impact of kernel NULL pointer bugs. 64kB is recommended
by default. 32kB is recommended on ARM.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
Found by "reason".
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Enable ARM idle if possible. Before Linux kernel version 4.8,
networking on i.MX6 may be broken.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
"reason" detected that we have initrd support, but we don't use it.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Auditing support is not needed on most embedded systems. Except
INTEGRITY is enabled.
We don't have INTEGRITY, so disable AUDIT as well.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Randomizes the freelist order used on creating new pages. This
security feature reduces the predictability of the kernel slab
allocator against heap overflows.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
Namespace support is not needed on most embedded systems (except NET_NS for
systemd).
Switch it off.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
| |
Only root needs access to dmesg by default.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
"reason" says:
fq_codel helps fight the network bufferbloat problem. It is believed
to be a good default with no tuning required for most workloads.
Enable it.
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This config enables the early debug for the Raspberry-Pi Firmware
bootloader.
This makes sure that the UART is available to barebox even if the
used board has additional hardware (like Bluetooth) connected to the
UART.
This command only works if the firmware is loaded from the SD-Card.
See for more information:
https://github.com/raspberrypi/firmware/wiki/USB-MSD-and-network-boot-debugging
Signed-off-by: Chris Fiege <chris@tinyhost.de>
|
|
|
|
|
|
|
| |
These patch has been merged by upstream and is part of barebox
since 2017.12.0.
Signed-off-by: Chris Fiege <chris@tinyhost.de>
|
|
|
|
|
|
|
|
| |
This firmware was taken from the official firmware repository at:
https://github.com/raspberrypi/firmware
from 86e3ccc14e43618f82a13e639002199de29a16b1
Signed-off-by: Chris Fiege <chris@tinyhost.de>
|
|
|
|
|
|
|
| |
CRYPTO_SHA256 is set as a dependency of several modules, so
CRYPTO_SHA256_ARM shold be used too.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
|
|
|
|
| |
This option checks for a stack overrun on calls to schedule(). If the
stack end location is found to be overwritten, always panic as the
content of the corrupted region can no longer be trusted. This is to
ensure no erroneous behaviour occurs which could result in data
corruption or a sporadic crash at a later stage once the region is
examined. The runtime overhead introduced is minimal.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
| |
RPi doesn't have any usable storage for swap.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
| |
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
| |
ext2 and ext3 have been replaced by ext4, and those two file systems are
not used on the target.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
| |
/proc/config.gz is useful for debugging or rebuilding the kernel.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
| |
This protects against using obviously wrong memory regions when copying
memory to/from the kernel.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|
|
|
|
|
|
|
|
| |
The kernel lockup detector should be active, as it's low overhead and
potentially provides useful debug output when the system is failing due
to a lockup.
Signed-off-by: Roland Hieber <r.hieber@pengutronix.de>
|