1. 09 Jul, 2019 1 commit
    • Alexey Min's avatar
      samsung-klte: backport memfd_create() syscall (!479) · 2fb18b5d
      Alexey Min authored
      This brings in several patches needed to add support for a
      memfd_create() syscall into kernel version 3.4 from kernel
      version 3.17. This is required for running lxc >= 3.1.0-r1
      with security patch that fixes CVE-2019-5736.
      In short, security issue was: in a privileged container root
      process could overwrite lxc-start executable by opening its
      file descriptor and rewriting executable contents. This is
      where memfd comes to help: you can create an in-memory file,
      copy your executable there, and place a set of SEALS to protect
      it from modifying at a deep level. Then you fexecve() that fd
      and you're safe.
      For example, pulseaudio also can benefit from having
      memfd_create() implemented.
      This backports the following commits from upstream linux:
       - dd37978c50bc8b354e5c4633f69387f16572fdac: cache the value
         of file_inode() in struct file
         commit from linux-3.10 to have an f_inode member inside
         struct file and a helper function file_inode() that is
         used in some of the following commits
       - 40e041a2c858b3caefc757e26cb85bfceae5062b shm: add sealing API
         from 3.17: security measure called SEALS, that you can put
         on memfd file to restrict operations on it
       - 9183df25fe7b194563db3fec6dc3202a5855839c shm: add memfd_create()
         also from 3.17
       - 503e6636b6f96056210062be703356f4253b6db9 asm-generic: add
         memfd_create system call to unistd.h
       - e57e41931134e09fc6c03c8d4eb19d516cc6e59b ARM: wire up
         memfd_create syscall
      The last two are needed to make the syscall visible/usable from
      userspace, one in generic context, other for ARM arch.
      The test program (https://github.com/minlexx/test_memfd/) was
      written to verify that this works.
      [ci:skip-build]: already built successfully in CI
  2. 06 Jul, 2019 5 commits
  3. 05 Jul, 2019 2 commits
  4. 03 Jul, 2019 1 commit
  5. 30 Jun, 2019 10 commits
    • Hacker1245's avatar
      samsung-lt023g: Enable WiFi, switch arch to armv7 (!470) · e2e4bb3d
      Hacker1245 authored
      [ci:skip-build]: already ran successfully in CI
    • Oliver Smith's avatar
      asus-flo, sony-castor-windy: use mesa-freedreno (!450) · 24d0ce16
      Oliver Smith authored
      Let all remaining devices that depend on mesa-dri-freedreno use the new
      mesa-freedreno package.
      [ci:skip-build]: won't finish in time. I'm verifying that the whole
                       merge request builds before merging.
    • Martijn Braam's avatar
      lg-hammerhead: mesa-freedreno, serial tty0, fix X (!450) · 624c965b
      Martijn Braam authored
      Use the new mesa-freedreno package. Configure inittab to start a
      terminal on ttyMSM0 (serial). Remove fbdev from xorg.conf and set
      SWCursor on.
      Based on patches from Brian Masney.
    • Oliver Smith's avatar
      sony-sirius: use mesa-freedreno, change to armv7 (!450) · 71a9fec1
      Oliver Smith authored
      Switch to armv7, because we're not building linux-postmarketos-qcom for
      armhf anymore.
    • Oliver Smith's avatar
      main/linux-postmarketos-qcom: update: 5.2_rc3, disable armhf (!450) · 7e4b70dd
      Oliver Smith authored
      Kernel patches by Brian Masney, this pmaports.git patch is based on work
      by Brian and Martijn Braam.
    • Oliver Smith's avatar
      temp/mesa-freedreno: current mesa master (!450) · a4f35cb7
      Oliver Smith authored
      Freedreno is broken in latest mesa stable, but it is fixed in current
      master. Let's use master for now.
      Based on Brian Masney's patch, but with a hardcoded commit and a
      separate package.
    • Oliver Smith's avatar
      teclast-x80pro: enable CONFIG_UEVENT_HELPER (!472) · ec143369
      Oliver Smith authored
      [ci:skip-build]: will not finish in time. I've built linux-asus-me176c
                       and it builds fine. I'm assuming that
                       linux-teclast-x80pro will also build, since it is
                       pretty much the vanilla kernel.
    • Oliver Smith's avatar
      asus-me176c: enable CONFIG_UEVENT_HELPER (!472) · 58bb1ab8
      Oliver Smith authored
      Make busybox mdev work in the postmarketOS initramfs.
    • Martijn Braam's avatar
      main/postmarketos-mkinitfs: verbose network log (!468) · 74ac6819
      Martijn Braam authored
      Make the initfs show better errors in the network setup part.
    • Oliver Smith's avatar
      main/postmarketos-base: fix wpa_supplicant config (!365) · 17292f4f
      Oliver Smith authored
      Fix wifi on htc-ace by properly setting nl80211 before wext.
      /etc/conf.d/wpa_supplicant is supposed to get modified twice with the
      current code in the post-install file. The first one was patched
      recently to set nl80211 before wext, but that change does not work in
      practice, for two reasons:
      1. The code block does not even get executed, because apk reports that
         /etc/conf.d/wpa_supplicant was already modified (by a package that
         was installed before, in its post-install script? I could not find
         out which one does that though).
      2. Even if it worked, the second code block would revert the change and
         put wext before nl80211 again.
      Fix this by removing the first code block, and changing the order in the
      second one. Make it easier to catch such errors in the future, by
      printing, which files get modified, or get skipped. Set "#!/bin/sh -e",
      so the script can not fail silently.
      When doing pmbootstrap -y zap and then pmbootstrap install, the output
      looks like this:
      (141/151) Installing postmarketos-base (3-r26)
      Executing postmarketos-base-3-r26.post-install
      - Modifying: /etc/fstab
      - Modifying: /etc/issue
      - Modifying: /etc/motd
      - Modifying: /etc/conf.d/syslog
      - Modifying: /etc/conf.d/wpa_supplicant
      - Modifying: /etc/sudoers
      - Modifying: /etc/chrony/chrony.conf
  6. 29 Jun, 2019 2 commits
  7. 27 Jun, 2019 2 commits
  8. 26 Jun, 2019 13 commits
  9. 24 Jun, 2019 4 commits