Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2019-07-14 | system/easy-kernel*: (Partly) sync kernel configs | Luis Ressel | 7 | -2063/+3078 | |
This is an attempt at syncing the kernel configs of our different arches. So far, only the 'Networking support/Networking options', 'Filesystems', 'Security Options' and 'Cryptographic API' sections have been handled, since those require much less knowledge about some of the more exotic hardware we support than some of the other sections. Some notable changes: Network * Enable IPsec, miscellaneous tunnels, and the diag interfaces for all socket families. * Enable policy routing (for wireguard). * Make the CUBIC TCP congestion control algorithm the default everywhere, provide a few other common choices. * Support FQ_CODEL. We may want to support further QoS features. * Disable support for PF_KEY sockets, which shouldn't be required by our IPsec userland tools. * Enable most netfilter features, except for arptables/ebtables/nfacct/ nfqueue/ipset, whose userland tools we don't provide yet, and a few other very specialized options. Filesystems * Build everything except for ext4, iso9660, vfat and squashfs as modules. * Use the ext4 driver for ext2 filesystems. * Disable the kernel automounter, which is currently only enabled on ppc32 and aarch64. Security * Only grant root access to dmesg by default; this can be overriden via a sysctl. * Support Yama; it doesn't do anything unless explicitly enabled by a sysctl, and may be useful to some users. * Disable AppAarmor, which is currently only enabled on pmmx and x86_64. Crypto * Disable a lot of uncommon ciphers which are unlikely to be used by anything. * Build all crypto code as modules (where possible); this means users with a dm-crypt-encrypted root filesystem now need to provide the appropriate kernel modules in their initramfs images on all arches. * Disable support for dedicated cryptographic coprocessors; we are not in a position to evaluate their security and performance benefits or disadvantages. Other * Allow serial consoles to be used as the kernel console on all arches; this is important for VMs. | |||||
2019-07-12 | system/icu: fix test failure on 32-bit; resolves #88 | A. Wilcox | 2 | -1/+72 | |
2019-07-12 | system/argon2: sec bump to 20190702 | A. Wilcox | 1 | -7/+11 | |
2019-07-10 | system/bubblewrap: add non-setuid variant | Max Rees | 1 | -1/+11 | |
2019-07-10 | system/perl-libwww: doc fix bump to 6.39 | A. Wilcox | 1 | -7/+2 | |
2019-07-10 | system/perl-net-http: bugfix bump to 6.19 | A. Wilcox | 1 | -6/+2 | |
2019-07-10 | system/perl-test-simple: bugfix bump to 1.302164 | A. Wilcox | 1 | -24/+6 | |
2019-07-09 | system/bc: bump to 2.1.0 | Gavin Howard | 1 | -2/+2 | |
This will be the last release with new features. This bc is complete. | |||||
2019-07-09 | Merge branch 'lr.env' into 'master' | A. Wilcox | 1 | -2/+3 | |
system/coreutils: Move env back to /usr/bin/ See merge request adelie/packages!274 | |||||
2019-07-09 | system/apk-tools: bump to 2.10.4 | A. Wilcox | 6 | -83/+147 | |
2019-07-08 | system/coreutils: Move env back to /usr/bin/ | Luis Ressel | 1 | -2/+3 | |
2019-07-08 | Merge s6-l-i bump into master | A. Wilcox | 1 | -2/+2 | |
system/s6-linux-init: Bump to 1.0.2.0 See merge request adelie/packages!272 | |||||
2019-07-07 | system/nss: bump to 3.44.1 | A. Wilcox | 1 | -2/+2 | |
2019-07-07 | system/coreutils: fix everything | A. Wilcox | 1 | -4/+7 | |
2019-07-07 | system/s6-linux-init: Bump to 1.0.2.0 | Luis Ressel | 1 | -2/+2 | |
2019-07-07 | system/coreutils: and don't come back, stupid symlinks | A. Wilcox | 1 | -16/+0 | |
2019-07-07 | system/coreutils: single-binary violates split /usr; kill off | A. Wilcox | 1 | -3/+2 | |
2019-07-06 | system/pcre: maybe even fix pmmx mariadb build? | A. Wilcox | 2 | -4/+22 | |
2019-07-06 | system/lddtree: add dep on which(1), overhaul build | A. Wilcox | 1 | -11/+4 | |
2019-07-06 | system/lvm2: build udev rules too | A. Wilcox | 2 | -17/+16 | |
2019-07-05 | system/vim: upgrade to 8.1.1635 | Kiyoshi Aman | 1 | -2/+2 | |
2019-07-05 | system/perl-net-ssleay: upgrade to 1.88 | Kiyoshi Aman | 1 | -4/+4 | |
2019-07-05 | system/perl-cpanel-json-xs: upgrade to 4.12 | Kiyoshi Aman | 1 | -2/+2 | |
2019-07-04 | system/docbook-xsl: le petite merde | A. Wilcox | 2 | -8/+8 | |
2019-07-04 | system/docbook-xsl: overhaul catalog(ue) management | A. Wilcox | 8 | -58/+89 | |
2019-07-04 | system/libssh2: enable more tests (no content change) | A. Wilcox | 1 | -0/+1 | |
2019-07-01 | system/ruby: fix depends on some split gems, don't split etc | A. Wilcox | 1 | -12/+3 | |
2019-06-28 | Merge branch 'skaware.20190515' into 'master' | A. Wilcox | 23 | -138/+339 | |
skaware 2019-05-15 See merge request !234 | |||||
2019-06-28 | Merge branch 'bump.djt.20190625' into 'master' | A. Wilcox | 7 | -64/+82 | |
djt's June 2019 Package Bumps This MR bumps most of the outdated packages that I maintain to their latest versions. See merge request !256 | |||||
2019-06-28 | system/gcc: more Ada | A. Wilcox | 2 | -127/+0 | |
2019-06-28 | system/gcc: look, ma! Ada is in the house! | A. Wilcox | 6 | -16/+806 | |
2019-06-28 | system/console-setup: depend on ckbcomp | A. Wilcox | 1 | -2/+2 | |
2019-06-27 | system/po4a: bump to 0.56 | A. Wilcox | 1 | -2/+2 | |
2019-06-26 | system/docbook-xsl: add docbook-xsl-ns subpackage | Dan Theisen | 1 | -2/+30 | |
2019-06-26 | system/lz4: bump package to 1.9.1 | Dan Theisen | 1 | -2/+2 | |
2019-06-26 | system/lvm2: bump package to 2.03.05 | Dan Theisen | 1 | -2/+2 | |
2019-06-26 | system/iproute2: bump package to 5.1.0 | Dan Theisen | 4 | -58/+48 | |
2019-06-26 | system/pcre2: bump to 10.33, enable JIT on ppc64 \o/ | A. Wilcox | 1 | -9/+2 | |
2019-06-26 | system/pax-utils: bump to 1.2.4 | A. Wilcox | 2 | -10/+8 | |
2019-06-25 | system/easy-kernel*: update checksums for configs | A. Wilcox | 3 | -8/+8 | |
2019-06-25 | Merge branch 'lr.easy-kernel-crypto-uapi' into 'master' | A. Wilcox | 8 | -30/+37 | |
system/easy-kernel*: Enable the crypto user API modules The SKCIPHER and HASH components are required for cryptsetup/dm-crypt, and there's no reason not to enable RNG and AEAD as well. See merge request !254 | |||||
2019-06-25 | system/easy-kernel*: Enable the crypto user API modules | Luis Ressel | 8 | -30/+37 | |
The SKCIPHER and HASH components are required for cryptsetup/dm-crypt, and there's no reason not to enable RNG and AEAD as well. | |||||
2019-06-24 | system/byacc: upgrade to 20190617 | Kiyoshi Aman | 1 | -3/+3 | |
2019-06-24 | system/vim: upgrade to 8.1.1583 | Kiyoshi Aman | 1 | -2/+2 | |
2019-06-22 | system/e2fsprogs: bump to 1.45.2 | A. Wilcox | 2 | -26/+9 | |
2019-06-22 | system/easy-kernel-power8*: use new mc14 | A. Wilcox | 2 | -2/+2 | |
2019-06-21 | system/sharutils: patch for CVE-2018-1000097 | Max Rees | 2 | -6/+25 | |
2019-06-21 | system/cvs: patch for CVE-2010-3846 and CVE-2017-12836 | Max Rees | 3 | -2/+236 | |
2019-06-21 | system/python3: [CVE] bump to 3.6.8, patch extra CVEs | Max Rees | 4 | -3/+398 | |
2019-06-21 | system/curl: [CVE] bump to 7.65.1 | Max Rees | 1 | -2/+5 | |