kjh
/
arch-linux-kernel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity
1,082 Commits 2 Branches 0 Tags 1.5 MiB
Commit Graph

366 Commits

Author SHA1 Message Date
Jan Alexander Steffens 38bd62e40b FS#71296: Enable DEBUG_LIST 2021-06-20 19:20:20 +00:00
Jan Alexander Steffens e7d5c4d89c 5.12.11.arch1-1 2021-06-16 22:13:35 +00:00
Jan Alexander Steffens d7bf404c33 FS#71270: Don't enable "bpf" LSM by default 
It provides all possible hooks, which makes it harder to properly use
major LSMs. Using security= to enable a major LSM puts it at the end of
the list. Some functions (like security_getprocattr) only use the first
matching hook, thus prefer bpf.
 2021-06-16 22:13:34 +00:00
Jan Alexander Steffens b7f14e1a69 5.12.8.arch1-1 2021-05-28 21:05:54 +00:00
Jan Alexander Steffens 99703861e1 FS#69505: Enable MTD_ROM 2021-05-27 19:39:55 +00:00
Jan Alexander Steffens 2a8704f5e1 Set KFENCE_SAMPLE_INTERVAL to 0 
Turns off KFENCE by default, as requested by Levente. There are power
use issues, see
https://lore.kernel.org/linux-mm/20210421105132.3965998-1-elver@google.com/
 2021-05-15 21:38:29 +00:00
Jan Alexander Steffens 1646eced3b Enable DEBUG_INFO_DWARF4 
Required for BTF to work with GCC 11.
 2021-05-15 21:38:27 +00:00
Jan Alexander Steffens cc87e6b052 5.12.2.arch1-1 2021-05-07 16:08:11 +00:00
Jan Alexander Steffens db81b3eea9 FS#70742: Enable MTD_NAND_ECC_* 2021-05-07 16:08:09 +00:00
Jan Alexander Steffens 621ea2d08c 5.12.1.arch1-1 2021-05-02 13:41:41 +00:00
Jan Alexander Steffens 7f6df05917 Turn on KFENCE by default 
As requested by Levente.
 2021-05-02 13:41:40 +00:00
Jan Alexander Steffens b03b4f7e6f 5.12.arch1-1 2021-04-26 21:33:26 +00:00
Jan Alexander Steffens d71e920034 5.11.16.arch1-1 2021-04-21 20:39:28 +00:00
Jan Alexander Steffens 62782a577d FS#69181: Enable FB_UVESA 2021-04-21 20:39:27 +00:00
Jan Alexander Steffens 0d66f76ec1 FS#68698: Enable HID_SENSOR_CUSTOM_SENSOR 2021-04-21 20:39:26 +00:00
Jan Alexander Steffens 6f3f90e76b FS#69505: Enable MTD_RAM 2021-04-21 20:39:22 +00:00
Jan Alexander Steffens 85750f85be Revert "Enable LOAD_UEFI_KEYS" 
It didn't help secure dkms modules like we thought it would.
 2021-04-17 00:56:34 +00:00
Jan Alexander Steffens 4e15a9f945 5.11.15.arch1-1 2021-04-16 12:28:14 +00:00
Jan Alexander Steffens 9a383dc10f Enable LOAD_UEFI_KEYS 
https://bbs.archlinux.org/viewtopic.php?pid=1861193#p1861193

Requested by Foxboron.
 2021-04-16 12:28:12 +00:00
Jan Alexander Steffens 46d00c9794 5.11.13.arch1-1 2021-04-10 21:25:36 +00:00
Jan Alexander Steffens 44305ad48b FS#70375: Disable BT_HS 2021-04-09 18:49:50 +00:00
Jan Alexander Steffens 3272234053 FS#70384: Return atkbd to a module 2021-04-09 14:49:24 +00:00
Jan Alexander Steffens eac563f39e 5.11.12.arch1-1 2021-04-07 22:37:33 +00:00
Jan Alexander Steffens 56380b3e43 FS#70299: Enable IDLE_PAGE_TRACKING 2021-04-05 12:50:09 +00:00
Jan Alexander Steffens e74e4210d3 5.11.11.arch1-1 2021-03-30 14:47:29 +00:00
Jan Alexander Steffens f99611e296 FS#69441: Revert "Disable USB gadget support" 2021-03-30 14:47:28 +00:00
Jan Alexander Steffens ca32941726 5.11.9.arch1-1 2021-03-24 19:28:05 +00:00
Jan Alexander Steffens d014a88b5b FS#70140: Enable EFI_VARS_PSTORE_DEFAULT_DISABLE 2021-03-24 19:28:03 +00:00
Jan Alexander Steffens 364d5e5432 5.11.8.arch1-1 2021-03-21 02:30:21 +00:00
Jan Alexander Steffens 1cf3662d97 FS#70064: Set SND_HDA_PREALLOC_SIZE to 0 
This is also the default in Fedora.
 2021-03-21 02:30:20 +00:00
Jan Alexander Steffens 1c099ca397 5.11.7.arch1-1 2021-03-17 17:35:35 +00:00
Jan Alexander Steffens b4a2e977d4 FS#69992: Enable SND_SOC_INTEL_SKYLAKE_HDAUDIO_CODEC 2021-03-15 16:28:21 +00:00
Jan Alexander Steffens 7e6eb07df5 FS#69479: Disable BCM63XX drivers 2021-03-14 14:40:19 +00:00
Jan Alexander Steffens fc7f97fc30 FS#33958, FS#35753: Fix tomoyo settings 2021-03-14 14:40:17 +00:00
Jan Alexander Steffens e280f34fb3 5.11.4.arch1-1 2021-03-07 18:34:36 +00:00
Jan Alexander Steffens 62f6c03f2c 5.11.3.arch1-1 2021-03-04 22:24:21 +00:00
Jan Alexander Steffens cc8cce72b9 5.11.arch1-1 2021-02-15 23:56:35 +00:00
Jan Alexander Steffens 71c2279684 FS#69158: Return psmouse to a module 2021-02-04 19:32:19 +00:00
Jan Alexander Steffens 2630980304 5.10.13.arch1-1 2021-02-04 00:25:58 +00:00
Jan Alexander Steffens 7874717d9d FS#69479: Disable Lantiq and Rockchip drivers 2021-02-04 00:25:57 +00:00
Jan Alexander Steffens 861c5dfd04 Update security config 
- Build in loadpin, but keep it disabled by default
- Enable bpf by default
 2021-02-04 00:25:55 +00:00
Jan Alexander Steffens d04972b60c FS#69212: Reenable multimedia test drivers 2021-01-31 01:33:42 +00:00
Jan Alexander Steffens c19564ecfa 5.10.6.arch1-1 2021-01-09 19:17:04 +00:00
Jan Alexander Steffens 87cfb1a823 Reenable MTD_PHRAM 
Can be used with syslinux's memdiskfind to mount a filesystem image.
 2021-01-01 06:17:41 +00:00
Jan Alexander Steffens 45857ed86c Enable SECURITY_DMESG_RESTRICT 
Default on Debian, and seems to be reasonable for us since we also don't
allow access to the system journal by default.
 2020-12-31 01:18:17 +00:00
Jan Alexander Steffens b54786ee1f 5.10.4.arch1-1 2020-12-31 01:18:16 +00:00
Jan Alexander Steffens ddeb06b257 Revert two config changes 
As requested by Levente.
 2020-12-22 01:33:12 +00:00
Jan Alexander Steffens 5ee180e682 5.10.2.arch1-1 2020-12-21 20:50:34 +00:00
Jan Alexander Steffens 2f63adc58f Disable most of MTD 
Besides some support for directly flashing BIOS chips which is marked as
DANGEROUS, these seem only useful on embedded devices.

Only leave the simulator and the MTD-on-block emulator.
 2020-12-18 23:32:10 +00:00
Jan Alexander Steffens a10b2065c8 Disable SFI 
Only used on some exotic Intel smartphone platforms without ACPI.
 2020-12-18 23:32:09 +00:00