]>
git.proxmox.com Git - pve-kernel-jessie.git/log
Fabian Grünbichler [Tue, 21 Feb 2017 09:24:25 +0000 (10:24 +0100)]
install release keys in a saner way
apt actually expects single exported keys in the trusted
directory, not keyrings. recent gpg2 versions (like that in
Debian Stretch) switch to a different default keyring format
which apt does not handle at all, so the old hack will break
soon.
by changing the key format in this repository from armored
exported public key to binary exported public key, which
both apt in Debian Jessie and apt in Debian Stretch
understand, we can just install those two files directly
in the trusted dir.
bonus: the package content does not change based on gpg
version or configuration anymore.
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
CC: dietmar@proxmox.com
CC: w.bumiller@proxmox.com
Fabian Grünbichler [Wed, 8 Feb 2017 14:49:46 +0000 (15:49 +0100)]
fix #1276: include package version in uname information
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fabian Grünbichler [Wed, 8 Feb 2017 14:57:01 +0000 (15:57 +0100)]
correct changelog entry
Fabian Grünbichler [Wed, 8 Feb 2017 09:39:26 +0000 (10:39 +0100)]
bump version to 4.4-80, bump ABI to 4.4.40-1-pve
Fabian Grünbichler [Wed, 8 Feb 2017 13:16:38 +0000 (14:16 +0100)]
fix linux-tools description
Fabian Grünbichler [Wed, 8 Feb 2017 10:28:46 +0000 (11:28 +0100)]
ensure linux-tools is not linked with OpenSSL
Fabian Grünbichler [Wed, 8 Feb 2017 09:36:03 +0000 (10:36 +0100)]
update ZFS/SPL sources to 0.6.5.9
Fabian Grünbichler [Wed, 8 Feb 2017 09:28:13 +0000 (10:28 +0100)]
fix CVE-2017-2596: kvm: page reference leakage
Linux kernel built with the KVM virtualisation
support(CONFIG_KVM), with nested virtualisation(nVMX)
feature enabled(nested=1), is vulnerable to host memory
leakage issue. It could occur while emulating VMXON
instruction in 'handle_vmon'.
A L1 guest user could use this flaw to leak host memory
potentially resulting in DoS.
Fabian Grünbichler [Wed, 8 Feb 2017 09:43:33 +0000 (10:43 +0100)]
drop patches applied upstream
Fabian Grünbichler [Wed, 8 Feb 2017 09:16:53 +0000 (10:16 +0100)]
update to Ubuntu-4.4.0-62.83
Fabian Grünbichler [Thu, 19 Jan 2017 13:44:04 +0000 (14:44 +0100)]
bump version to 4.4.35-79
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fabian Grünbichler [Thu, 19 Jan 2017 13:40:19 +0000 (14:40 +0100)]
fix CVE-2017-2583
potential DoS or privilege escalation in KVM guests
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fabian Grünbichler [Thu, 19 Jan 2017 14:15:04 +0000 (15:15 +0100)]
revert buggy NVME setup commit
see https://bugs.launchpad.net/ubuntu/+source/linux/+bug/
1626894
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fabian Grünbichler [Thu, 19 Jan 2017 13:36:06 +0000 (14:36 +0100)]
set transparent hugepages to madvise by default
"never" is mainly for debugging purposes, and causes
increased memory fragmentation.
"madvise" is the conservative option - only programs
requesting huge pages via madvise get them, e.g. Qemu.
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fabian Grünbichler [Tue, 10 Jan 2017 08:48:35 +0000 (09:48 +0100)]
fix proxmox-ve package description
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
Fabian Grünbichler [Mon, 9 Jan 2017 09:05:40 +0000 (10:05 +0100)]
bump version to 4.4.35-78, bump ABI to 4.4.35-2
Fabian Grünbichler [Mon, 9 Jan 2017 09:05:16 +0000 (10:05 +0100)]
revert buggy OOM commits
Fabian Grünbichler [Thu, 22 Dec 2016 08:12:57 +0000 (09:12 +0100)]
bump version to 4.4.35-77
Fabian Grünbichler [Thu, 22 Dec 2016 10:54:17 +0000 (11:54 +0100)]
add cpuset remap patch
Fabian Grünbichler [Thu, 22 Dec 2016 08:11:33 +0000 (09:11 +0100)]
drop patches applied upstream
Fabian Grünbichler [Thu, 22 Dec 2016 08:09:57 +0000 (09:09 +0100)]
update to Ubuntu 4.4.0-58-79
Dietmar Maurer [Fri, 9 Dec 2016 09:53:29 +0000 (10:53 +0100)]
set RELEASE=4.4, bump version to 4.4.35-76
Fabian Grünbichler [Tue, 6 Dec 2016 08:42:36 +0000 (09:42 +0100)]
bump version to 4.4.35-75
Fabian Grünbichler [Tue, 6 Dec 2016 08:39:38 +0000 (09:39 +0100)]
fix CVE-2016-8655
Fabian Grünbichler [Tue, 6 Dec 2016 08:36:25 +0000 (09:36 +0100)]
cherry-pick fix for broadcom bridge issue
Fabian Grünbichler [Mon, 5 Dec 2016 09:20:48 +0000 (10:20 +0100)]
bump version to 4.4.35-74
Fabian Grünbichler [Mon, 5 Dec 2016 09:18:40 +0000 (10:18 +0100)]
update DRBD to 9.0.5-1
Fabian Grünbichler [Mon, 5 Dec 2016 09:15:26 +0000 (10:15 +0100)]
update to Ubuntu-4.4.0-52.73 / 4.4.35
Fabian Grünbichler [Wed, 30 Nov 2016 08:44:41 +0000 (09:44 +0100)]
bump version to 4.4.30-73
Fabian Grünbichler [Wed, 30 Nov 2016 08:42:43 +0000 (09:42 +0100)]
drop sd-fix-rw_max.patch applied upstream
Fabian Grünbichler [Fri, 18 Nov 2016 13:06:11 +0000 (14:06 +0100)]
update to Ubuntu 4.4.0-51.72
Fabian Grünbichler [Mon, 14 Nov 2016 11:18:13 +0000 (12:18 +0100)]
update to Ubuntu 4.4.0-47.68, bump version to 4.4.24-72
Fabian Grünbichler [Thu, 27 Oct 2016 07:19:05 +0000 (09:19 +0200)]
bump version to 4.4.21-71
Fabian Grünbichler [Thu, 27 Oct 2016 07:17:51 +0000 (09:17 +0200)]
add fix for zpool import with vdev on zvol
introduced in Ubuntu 4.4.0-6.21, fix from zfs master
Fabian Grünbichler [Thu, 20 Oct 2016 12:44:37 +0000 (14:44 +0200)]
bump version to 4.4.21-70
Fabian Grünbichler [Thu, 20 Oct 2016 12:44:07 +0000 (14:44 +0200)]
update ZFS/SPL to 0.6.5.8
Fabian Grünbichler [Thu, 20 Oct 2016 12:43:53 +0000 (14:43 +0200)]
update to Ubuntu-4.4.0-45.66
Fabian Grünbichler [Fri, 14 Oct 2016 07:00:48 +0000 (09:00 +0200)]
update to Ubuntu 4.4.0-43.63, bump version to 4.4.21-69
Wolfgang Bumiller [Thu, 13 Oct 2016 14:49:30 +0000 (16:49 +0200)]
Fix #927: add IPoIB performance regression fix
Fixes kernel bug #111921
Fabian Grünbichler [Thu, 13 Oct 2016 07:54:24 +0000 (09:54 +0200)]
update to Ubuntu 4.4.0-42.62, bump version to 4.4.21-68
Fabian Grünbichler [Tue, 11 Oct 2016 05:43:57 +0000 (07:43 +0200)]
update to Ubuntu 4.4.0-41.61, bump API to 4.4.21-1
Dietmar Maurer [Mon, 26 Sep 2016 07:40:30 +0000 (09:40 +0200)]
set RELEASE=4.3
Fabian Grünbichler [Fri, 16 Sep 2016 06:15:17 +0000 (08:15 +0200)]
update to Ubuntu 4.4.0-38.57, bump API to 4.4.19-1
Dietmar Maurer [Wed, 7 Sep 2016 15:27:19 +0000 (17:27 +0200)]
bump version to 4.4.16-65
Dietmar Maurer [Wed, 7 Sep 2016 15:26:03 +0000 (17:26 +0200)]
update drbd sources to 9.0.4-1
Dietmar Maurer [Wed, 31 Aug 2016 12:50:19 +0000 (14:50 +0200)]
bump version to 4.4.16-64
Dietmar Maurer [Wed, 31 Aug 2016 12:40:06 +0000 (14:40 +0200)]
sd: Fix rw_max for devices that report an optimal xfer size
backported from upstream kernel
Dietmar Maurer [Mon, 29 Aug 2016 10:09:18 +0000 (12:09 +0200)]
bump deb release to -63 for proxmox-ve package update
Dietmar Maurer [Mon, 29 Aug 2016 09:42:41 +0000 (11:42 +0200)]
use /etc/apt/trusted.gpg.d/ mechanism to install trusted apt keys
Also add Proxmox Virtual Environment 5.x Release Key
Fabian Grünbichler [Thu, 25 Aug 2016 11:07:45 +0000 (13:07 +0200)]
update firmware package for 4.4.16
Fabian Grünbichler [Thu, 25 Aug 2016 09:04:36 +0000 (11:04 +0200)]
update changelog, bump version to 4.4.16-62
Fabian Grünbichler [Thu, 25 Aug 2016 09:03:20 +0000 (11:03 +0200)]
update e1000e to 3.3.5
include kcompat patch already used for igb
Fabian Grünbichler [Thu, 25 Aug 2016 09:00:26 +0000 (11:00 +0200)]
move changelog entry to new pkgrel
Dietmar Maurer [Thu, 25 Aug 2016 06:32:34 +0000 (08:32 +0200)]
watchdog: mei_wdt: implement MEI iAMT watchdog driver
Fabian Grünbichler [Tue, 16 Aug 2016 12:35:49 +0000 (14:35 +0200)]
update igb source archive
Fabian Grünbichler [Tue, 16 Aug 2016 12:32:44 +0000 (14:32 +0200)]
update igb module to 5.3.5.3
and add patch to skip kernel version check for backported
napi_consume_skb method
Fabian Grünbichler [Tue, 16 Aug 2016 12:32:01 +0000 (14:32 +0200)]
update to Ubuntu 4.4.0-36.55, bump API to 4.4.16-1
Dietmar Maurer [Wed, 24 Aug 2016 04:57:54 +0000 (06:57 +0200)]
EDAC, ie31200_edac: Add Skylake support
Dietmar Maurer [Wed, 3 Aug 2016 08:17:24 +0000 (10:17 +0200)]
add fwlist-4.4.13-2-pve
Fabian Grünbichler [Mon, 25 Jul 2016 08:42:36 +0000 (10:42 +0200)]
update to Ubuntu 4.4.0-33.52, bump API to 4.4.15-1
Dietmar Maurer [Mon, 25 Jul 2016 06:23:25 +0000 (08:23 +0200)]
bump version to 4.4.13-59
Fabian Grünbichler [Thu, 14 Jul 2016 14:00:19 +0000 (16:00 +0200)]
add scheduler fix for ceph on numa hosts
see https://forum.proxmox.com/threads/ceph-kernel-4-4-8-bug.28196/
and https://lkml.org/lkml/2016/3/17/570 for background
Dietmar Maurer [Fri, 15 Jul 2016 04:59:56 +0000 (06:59 +0200)]
update drbd to 9.0.3-1
Dietmar Maurer [Fri, 15 Jul 2016 04:20:02 +0000 (06:20 +0200)]
update to Ubuntu-4.4.0-31.50, bump API to 4.4.13-2-pve
Fabian Grünbichler [Thu, 14 Jul 2016 11:58:58 +0000 (13:58 +0200)]
update changelog, bump version to 4.4.13-57
Fabian Grünbichler [Wed, 13 Jul 2016 13:28:14 +0000 (15:28 +0200)]
cherry-pick fix for CVE-2016-4470
Fabian Grünbichler [Wed, 13 Jul 2016 08:23:09 +0000 (10:23 +0200)]
cherry-pick fix for CVE-2016-4794
Wolfgang Bumiller [Tue, 12 Jul 2016 08:31:14 +0000 (10:31 +0200)]
modinfo is not in a user's PATH
Fabian Grünbichler [Tue, 28 Jun 2016 08:03:13 +0000 (10:03 +0200)]
update changelog, bump version to 4.4.13-56
Fabian Grünbichler [Tue, 28 Jun 2016 08:02:38 +0000 (10:02 +0200)]
drop zfs patch applied upstream
Fabian Grünbichler [Tue, 28 Jun 2016 08:01:25 +0000 (10:01 +0200)]
update spl/zfs source archives
Dietmar Maurer [Sat, 25 Jun 2016 15:16:48 +0000 (17:16 +0200)]
upload: use new repoman toolkit
Dietmar Maurer [Sat, 25 Jun 2016 09:59:03 +0000 (11:59 +0200)]
update to Ubuntu-4.4.0-28.47, bump API to 4.4.13-1-pve
Fabian Grünbichler [Wed, 15 Jun 2016 13:30:49 +0000 (15:30 +0200)]
move /lib/modules/.../build as file into .deb
this symlink should not be created in the postinst,
but simply included in the pve-headers-xx .deb
this is a followup to the recently dropped dependency of
pve-headers-xx on pve-kernel-xx, and makes this more
consistent with how upstream (Ubuntu) handles the creation
of this symlink.
Fabian Grünbichler [Tue, 14 Jun 2016 10:28:10 +0000 (12:28 +0200)]
use correct git urls for SOURCE
Dietmar Maurer [Wed, 15 Jun 2016 05:37:30 +0000 (07:37 +0200)]
fix lintian warning description-synopsis-starts-with-article
Dietmar Maurer [Wed, 15 Jun 2016 05:33:12 +0000 (07:33 +0200)]
fix copyright
Dietmar Maurer [Wed, 15 Jun 2016 05:25:51 +0000 (07:25 +0200)]
rename control-headers to pve-headers.control
Dietmar Maurer [Wed, 15 Jun 2016 05:18:50 +0000 (07:18 +0200)]
cleanup: use better variable names
Fabian Grünbichler [Mon, 13 Jun 2016 11:50:00 +0000 (13:50 +0200)]
drop dependency on pve-kernel-xx for pve-header-xx
usually, the headers should be installed before the kernel
image, not the other way round, and neither depends on the
other.
Dietmar Maurer [Wed, 15 Jun 2016 05:06:40 +0000 (07:06 +0200)]
fix upload target: remove old pve-header_* packages
Fabian Grünbichler [Mon, 13 Jun 2016 11:49:59 +0000 (13:49 +0200)]
add pve-headers meta-package
Dietmar Maurer [Fri, 10 Jun 2016 19:00:44 +0000 (21:00 +0200)]
update to Ubuntu-4.4.0-24.43, bump API to 4.4.10-1-pve
Dietmar Maurer [Fri, 10 Jun 2016 11:35:09 +0000 (13:35 +0200)]
update ixgbe to 4.4.6
Dietmar Maurer [Tue, 31 May 2016 04:56:11 +0000 (06:56 +0200)]
bump version to 4.4.8-52
Dietmar Maurer [Tue, 31 May 2016 04:52:01 +0000 (06:52 +0200)]
ixgbe: Correct handling of any outer UDP checksum setting
include patch from upstream kernel.
Dietmar Maurer [Tue, 17 May 2016 13:57:20 +0000 (15:57 +0200)]
bump version to 4.4.8-51
Fabian Grünbichler [Tue, 17 May 2016 06:57:53 +0000 (08:57 +0200)]
Update to Ubuntu-4.4.0-22.40
CVE-2016-0758: Fix ASN.1 indefinite length object parsing
CVE-2016-3713: KVM: MTRR: remove MSR 0x2f8
Dietmar Maurer [Thu, 12 May 2016 12:07:08 +0000 (14:07 +0200)]
proxmox-ve/postrm: ignore errors
Wolfgang Bumiller [Thu, 12 May 2016 10:51:49 +0000 (12:51 +0200)]
By default disable the new dynamic halt polling behavior
The default behavior introduced by kernel commit
aca6ff29c
(KVM: dynamic halt-polling) causes a spike in cpu usage and
massive performance degradation with virtio network under
network load. This patch changes the newly introduced kvm
module parameters to reflect the old behavior.
Dietmar Maurer [Thu, 12 May 2016 07:20:26 +0000 (09:20 +0200)]
bump version to 4.4.8-50
Fabian Grünbichler [Wed, 11 May 2016 10:36:51 +0000 (12:36 +0200)]
Fix CVE-2016-4485, CVE-2016-4486, CVE-2016-4558
cherry-picked from Ubuntu Xenial master-next
Dietmar Maurer [Mon, 9 May 2016 08:30:50 +0000 (10:30 +0200)]
update changelog
Fabian Grünbichler [Mon, 9 May 2016 08:18:08 +0000 (10:18 +0200)]
add fix for zfs acl write bug
Fabian Grünbichler [Mon, 9 May 2016 06:49:48 +0000 (08:49 +0200)]
fix #981: backport Skylake ACS quirk patches from 4.7
Fabian Grünbichler [Mon, 9 May 2016 06:49:47 +0000 (08:49 +0200)]
Update to 4.4.0-22.39
drop CVE fixes applied upstream
Dietmar Maurer [Mon, 25 Apr 2016 09:36:19 +0000 (11:36 +0200)]
set RELEASE=4.2
Fabian Grünbichler [Thu, 21 Apr 2016 09:06:40 +0000 (11:06 +0200)]
fix #950: cherry-pick length check for tcp_mark_head_lost
Dietmar Maurer [Thu, 21 Apr 2016 07:33:56 +0000 (09:33 +0200)]
bump version to 4.4.6-48
Fabian Grünbichler [Thu, 21 Apr 2016 07:21:49 +0000 (09:21 +0200)]
cherry-pick fix for CVE-2016-3951 in usbnet driver