Skip to content

Linux Hardened Kernels 2024-05-03#308833

Merged
fabianhjr merged 10 commits intoNixOS:masterfrom
whentze:linux-hardened-update
May 18, 2024
Merged

Linux Hardened Kernels 2024-05-03#308833
fabianhjr merged 10 commits intoNixOS:masterfrom
whentze:linux-hardened-update

Conversation

@whentze
Copy link
Contributor

@whentze whentze commented May 3, 2024
edited
Loading

Description of changes

I simply ran update.py (after fixing a bug in it) and it did its thing.

This obsoletes #301858.

Things done

  • Built on platform(s)
    • x86_64-linux
    • aarch64-linux
    • x86_64-darwin
    • aarch64-darwin
  • For non-Linux: Is sandboxing enabled in nix.conf? (See Nix manual)
    • sandbox = relaxed
    • sandbox = true
  • Tested, as applicable:
  • Tested compilation of all packages that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage
  • Tested basic functionality of all binary files (usually in ./result/bin/)
  • 24.05 Release Notes (or backporting 23.05 and 23.11 Release notes)
    • (Package updates) Added a release notes entry if the change is major or breaking
    • (Module updates) Added a release notes entry if the change is significant
    • (Module addition) Added a release notes entry if adding a new NixOS module
  • Fits CONTRIBUTING.md.

Add a 👍 reaction to pull requests you find important.

@github-actions github-actions bot added the 6.topic: kernel The Linux kernel label May 3, 2024
@ofborg ofborg bot added 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-linux: 1001-2500 This PR causes many rebuilds on Linux and should target the staging branches. labels May 3, 2024
@whentze
Copy link
Contributor Author

whentze commented May 6, 2024

I wasn't able to run nixpkgs-review to completion here yet due to hardware limitations. But I built 6.6.30 and 6.1.90 successfully and ran the kernel-generic NixOS tests for them.

@nixos-discourse
Copy link

nixos-discourse commented May 6, 2024

This pull request has been mentioned on NixOS Discourse. There might be relevant details there:

https://discourse.nixos.org/t/prs-ready-for-review/3032/3889

fabianhjr
fabianhjr requested changes May 8, 2024
View reviewed changes
@whentze whentze force-pushed the linux-hardened-update branch from bb8dcb6 to 0c61b6b Compare May 17, 2024 10:35
@whentze
Copy link
Contributor Author

whentze commented May 17, 2024

@fabianhjr this is ready for another look

@fabianhjr
Copy link
Member

fabianhjr commented May 17, 2024

Hi, eval is failing due to some missing changes for the init of 6.8

@whentze whentze force-pushed the linux-hardened-update branch from 0c61b6b to 62bfa65 Compare May 17, 2024 16:09
@github-actions github-actions bot added the 6.topic: nixos Issues or PRs affecting NixOS modules, or package usability issues specific to NixOS label May 17, 2024
@ofborg ofborg bot added the 8.has: package (new) This PR adds a new package label May 17, 2024
@whentze
Copy link
Contributor Author

whentze commented May 17, 2024

Oof, I should have waited for that before pinging, sorry. I fixed that now and eval passes.

Also, now that I've touched the correct files it looks like ofborg managed to add the reviewers :D

@fabianhjr
Copy link
Member

fabianhjr commented May 17, 2024

Will give some time to let other comment. LGTM

Thanks for contributing to nixpkgs! uwu

@fabianhjr fabianhjr added the 12.approvals: 1 This PR was reviewed and approved by one person. label May 17, 2024
@fabianhjr fabianhjr merged commit d6801d9 into NixOS:master May 18, 2024
@fabianhjr fabianhjr mentioned this pull request May 20, 2024
Merged
13 tasks
@github-actions
Copy link
Contributor

github-actions bot commented May 28, 2024

Successfully created backport PR for release-23.11:

@github-actions github-actions bot mentioned this pull request May 28, 2024
Closed
1 task
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fabianhjr fabianhjr fabianhjr approved these changes

@alyssais alyssais Awaiting requested review from alyssais

@Ma27 Ma27 Awaiting requested review from Ma27

@NeQuissimus NeQuissimus Awaiting requested review from NeQuissimus

@thoughtpolice thoughtpolice Awaiting requested review from thoughtpolice

@TredwellGit TredwellGit Awaiting requested review from TredwellGit

Assignees

No one assigned

Labels

6.topic: kernel The Linux kernel 6.topic: nixos Issues or PRs affecting NixOS modules, or package usability issues specific to NixOS 8.has: package (new) This PR adds a new package 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 501+ This PR causes many rebuilds on Linux and should normally target the staging branches. 10.rebuild-linux: 1001-2500 This PR causes many rebuilds on Linux and should target the staging branches. 12.approvals: 1 This PR was reviewed and approved by one person.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@whentze @nixos-discourse @fabianhjr @alyssais