bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-12 12:15:52 +02:00

Author	SHA1	Message	Date
Arne Fitzenreiter	65067248d1	kernel: update to 5.15.6 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-12-02 11:34:38 +01:00
Arne Fitzenreiter	ef972dcf7a	kernel: update arm config and rootfile (oldconfig) Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-11-29 09:14:33 +00:00
Arne Fitzenreiter	d4a6dc4270	kernel: update to 5.15.3 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-11-21 10:56:26 +00:00
Arne Fitzenreiter	521e8aa99d	kernel: aarch64 enable ath5k wlan driver Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-11-20 23:38:06 +00:00
Arne Fitzenreiter	96c83b21b3	kernel: update to 5.15.2 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-11-13 15:25:39 +00:00
Arne Fitzenreiter	e196a73096	kernel: update aarch64 config Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-11-11 18:18:23 +00:00
Arne Fitzenreiter	832490f063	kernel: update to 5.10.76 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-10-28 00:39:07 +02:00
Arne Fitzenreiter	58f6264fa4	kernel: update to 5.10.71 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-10-10 06:46:25 +00:00
Arne Fitzenreiter	13e001f5c2	kernel: config for nanopi r2s some drivers does nozt work as module so they are now compiled into main kernel Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-10-08 19:54:29 +00:00
Arne Fitzenreiter	62f705316b	kernel: aarch64 enable drivers for common ROCKCHIP boards thx to Fukan K fixes #12681 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-25 13:19:25 +00:00
Arne Fitzenreiter	a21d6a30ce	kernel: aarch64 oldconfig Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-25 13:07:36 +00:00
Michael Tremer	cbbed5bc14	kernel: Enable all cgroups on all architectures Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:04:36 +00:00
Michael Tremer	9df49966d6	kernel: Zero-init all stack variables by default Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:04:23 +00:00
Michael Tremer	b7ed5dc817	kernel: Enable support for TPM hardware Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:04:14 +00:00
Michael Tremer	9012cffdb6	kernel: Enable ExFAT on all architectures Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:01:02 +00:00
Michael Tremer	340f155649	kernel: Enable frontswap "Frontswap provides a “transcendent memory” interface for swap pages. In some environments, dramatic performance savings may be obtained because swapped pages are saved in RAM (or a RAM-like device) instead of a swap disk." https://www.kernel.org/doc/html/latest/vm/frontswap.html Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:00:52 +00:00
Michael Tremer	15f53912a1	kernel: Disable network security hooks This is a feature we do not use and it should therefore be disabled Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:00:41 +00:00
Michael Tremer	c913c9862c	kernel: Disable OpenvSwitch We do not use this and so we should not build it to save space. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:00:31 +00:00
Michael Tremer	fef9a33846	kernel: Disable any runtime testing Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:00:21 +00:00
Michael Tremer	828d3d2525	kernel: Disable SLUB debugging This is not necessary on our systems and according to the documentation will reduce code size of the allocator which will result in better performance. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 14:00:10 +00:00
Michael Tremer	034a2402fc	kernel: Enable Pressure Stall Information This is a new type of metric to find out what resource is currently a bottleneck for the whole system. We might use this for graphs. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 13:59:51 +00:00
Michael Tremer	c0932f8fbe	kernel: Disable suspending systems to RAM We do not make any use of this functionality Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 13:59:06 +00:00
Michael Tremer	0e83b0d03c	kernel: Change timer tick to 1000Hz This change is required to make the system respond faster to any realtime events (sending or receiving data packets). It will wake up at least one core 1000 times a second which will result in finer timer granularity and make scheduling smoother. HTB for example sends large packet bursts on each timer even to keep up data rates which is not helpful for most applications. The change might increase resource consumption and overhead slightly on some systems, but since we are running in an idle-dyntick configuration, we should not keep awake any cores that have not been awake before. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-09-20 13:58:57 +00:00
Arne Fitzenreiter	52758d52c3	kernel: update to 5.10.55 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-08-01 11:50:25 +02:00
Arne Fitzenreiter	f696f419ad	kernel: update to 5.10.46 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:40 +02:00
Arne Fitzenreiter	97500acdb8	kernel: update to 5.10.44 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:39 +02:00
Arne Fitzenreiter	09951f8b0f	kernel: aarch64: enable pcie-brcmstb and brcm2711-thermal for RPi4 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	663ab267ba	kernel: update to 5.10.42 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	e9692dd548	kernel: update to 5.10.41 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	adea4dde18	kernel: update to 5.10.40 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	b358af5bfe	kernel: update to 5.10.39 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	5235ab4817	kernel: update to 5.10.38 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	5a27051fc2	kernel: update to 5.10.37 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	b75dd327fd	kernel: update to 5.10.32 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:38 +02:00
Arne Fitzenreiter	09ddf00f20	kernel: update to 5.10.25 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:37 +02:00
Arne Fitzenreiter	9d1bffe083	kernel: arm* disable alg modules Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:37 +02:00
Arne Fitzenreiter	ca46fa4df4	kernel: arm* oldconfig Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:37 +02:00
Arne Fitzenreiter	ff5db7732c	kernel: arm* enable UAS for USB storage this is needed for newer USB enclosures to support trim and get better speed. (already enabled on x86*) Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:37 +02:00
Arne Fitzenreiter	7d9d6e7b03	kernel: update aarch64 config and rootfiles Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2021-07-05 07:42:37 +02:00
Michael Tremer	5c8b5c3923	kernel: Enable BBR as default TCP congestion algorithm This will increase throughput since BBR is more modern and adjusted to the nowadays version of the Internet whereas Cubic is more conservative and might not always fully saturate the downlink. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2021-07-05 07:42:36 +02:00
Arne Fitzenreiter	10ce44b0c6	kernel: update to 4.14.232 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org> Reviewed-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2021-05-16 11:58:42 +00:00
Arne Fitzenreiter	7e27f7cdc1	kernel: update to 4.14.229 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org> Reviewed-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2021-04-10 13:40:01 +00:00
Arne Fitzenreiter	2e1bf458e2	kernel: update to 4.14.206 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-11-12 09:02:02 +01:00
Arne Fitzenreiter	0163c62dee	kernel: aarch64: enable ahci this is needed to boot on ESXi on arm. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2020-11-11 11:50:12 +00:00
Arne Fitzenreiter	73f4e7b4c6	kernel: aarch64: disable SSDT_OVERLAYS this option was visible by enabling ACPI and is enabled by default but adds an attacking vector. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-09-18 05:23:18 +00:00
Mathew McBride	e29125d52f	kernel: enable ACPI support on ARM64 ACPI (with EFI) is used on ARM systems conforming to the Server Base Boot Requirements (SBBR) and is an optional on embedded systems (EBBR). Up to now the ARM64 boards supported by IPFire use U-Boot and device tree so ACPI was not turned on. The immediate use case here is to run under virtualization, using my muvirt project[1] I can run IPFire on our Traverse Ten64 system. For reasons I'll explain separately it is not currently possible to run stock IPFire on this system. This change also enables the EFI RTC driver which is presented by the qemu arm64 virt machine. Signed-off-by: Mathew McBride <matt@traverse.com.au> [1] - https://gitlab.com/traversetech/muvirt Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-09-17 18:50:35 +00:00
Arne Fitzenreiter	ce9f979c01	kernel: update to 4.14.195 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-08-31 06:58:32 +02:00
Arne Fitzenreiter	f3a59d63e2	kernel: update to 4.14.184 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-06-12 16:04:48 +02:00
Peter Müller	92e828b3b0	kernel: disable CONFIG_UPROBES Quoted from #12433: > Uprobes is the user-space counterpart to kprobes: they enable instrumentation > applications (such as 'perf probe') to establish unintrusive probes in > user-space binaries and libraries, by executing handler functions when the > probes are hit by user-space applications. > > ( These probes come in the form of single-byte breakpoints, managed by the > kernel and kept transparent to the probed application. ) IMHO this can be safely disabled, as there is little if any need to debug userspace programs _that_ deeply on an IPFire machine. Fixes: #12433 Cc: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org> Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-06-10 15:18:36 +00:00
Peter Müller	3eb393ff2e	kernel: enable CONFIG_FORTIFY_SOUCRE on aarch64 Partially fixes: #12369 Cc: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org> Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-06-10 15:17:24 +00:00

1 2

88 Commits