diff options
author | Ricardo Salveti <ricardo.salveti@linaro.org> | 2016-11-15 22:35:32 -0200 |
---|---|---|
committer | Ricardo Salveti <ricardo.salveti@linaro.org> | 2016-11-15 22:35:32 -0200 |
commit | 0c1e3f4a2ea32884a4030b7386387c6b75b43c9a (patch) | |
tree | e3542de2f0470ba83d293d1c39f969925c895e89 | |
parent | 6c0c9bcf78dfc886907d006b8cb6c2ea0f075a62 (diff) |
d/p/series: only apply debian specific patches
Change-Id: If8ec305d7781de99c196a23560148e04cbe91661
Signed-off-by: Ricardo Salveti <ricardo.salveti@linaro.org>
-rw-r--r-- | debian/patches/series | 116 |
1 files changed, 58 insertions, 58 deletions
diff --git a/debian/patches/series b/debian/patches/series index 5d4a0b5e5..4dffff171 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -12,90 +12,90 @@ debian/tools-perf-version.patch debian/tools-perf-install.patch # Fixes/improvements to firmware loading -features/all/drivers-media-dvb-usb-af9005-request_firmware.patch -debian/iwlwifi-do-not-request-unreleased-firmware.patch -bugfix/all/firmware_class-log-every-success-and-failure.patch -bugfix/all/firmware-remove-redundant-log-messages-from-drivers.patch -bugfix/all/radeon-firmware-is-required-for-drm-and-kms-on-r600-onward.patch +#features/all/drivers-media-dvb-usb-af9005-request_firmware.patch +#debian/iwlwifi-do-not-request-unreleased-firmware.patch +#bugfix/all/firmware_class-log-every-success-and-failure.patch +#bugfix/all/firmware-remove-redundant-log-messages-from-drivers.patch +#bugfix/all/radeon-firmware-is-required-for-drm-and-kms-on-r600-onward.patch # Patches from aufs4 repository, imported with # debian/patches/features/all/aufs4/gen-patch. These are only the # changes needed to allow aufs to be built out-of-tree. -features/all/aufs4/aufs4-base.patch -features/all/aufs4/aufs4-mmap.patch -features/all/aufs4/aufs4-standalone.patch +#features/all/aufs4/aufs4-base.patch +#features/all/aufs4/aufs4-mmap.patch +#features/all/aufs4/aufs4-standalone.patch # Change some defaults for security reasons -debian/af_802154-Disable-auto-loading-as-mitigation-against.patch -debian/rds-Disable-auto-loading-as-mitigation-against-local.patch -debian/decnet-Disable-auto-loading-as-mitigation-against-lo.patch -debian/fs-enable-link-security-restrictions-by-default.patch +#debian/af_802154-Disable-auto-loading-as-mitigation-against.patch +#debian/rds-Disable-auto-loading-as-mitigation-against-local.patch +#debian/decnet-Disable-auto-loading-as-mitigation-against-lo.patch +#debian/fs-enable-link-security-restrictions-by-default.patch # Set various features runtime-disabled by default -debian/sched-autogroup-disabled.patch -debian/yama-disable-by-default.patch -debian/add-sysctl-to-disallow-unprivileged-CLONE_NEWUSER-by-default.patch -features/all/security-perf-allow-further-restriction-of-perf_event_open.patch +#debian/sched-autogroup-disabled.patch +#debian/yama-disable-by-default.patch +#debian/add-sysctl-to-disallow-unprivileged-CLONE_NEWUSER-by-default.patch +#features/all/security-perf-allow-further-restriction-of-perf_event_open.patch # Disable autoloading/probing of various drivers by default -debian/cdc_ncm-cdc_mbim-use-ncm-by-default.patch -debian/snd-pcsp-disable-autoload.patch -bugfix/x86/viafb-autoload-on-olpc-xo1.5-only.patch +#debian/cdc_ncm-cdc_mbim-use-ncm-by-default.patch +#debian/snd-pcsp-disable-autoload.patch +#bugfix/x86/viafb-autoload-on-olpc-xo1.5-only.patch # Taint if dangerous features are used -debian/fanotify-taint-on-use-of-fanotify_access_permissions.patch +#debian/fanotify-taint-on-use-of-fanotify_access_permissions.patch # Arch bug fixes bugfix/arm64/arm64-mm-limit-task_size_64-for-compatibility.patch -bugfix/x86/x86-efi-prevent-mixed-mode-boot-corruption-with-conf.patch +#bugfix/x86/x86-efi-prevent-mixed-mode-boot-corruption-with-conf.patch # Arch features -features/mips/MIPS-increase-MAX-PHYSMEM-BITS-on-Loongson-3-only.patch -features/mips/MIPS-Loongson-3-Add-Loongson-LS3A-RS780E-1-way-machi.patch -features/mips/MIPS-octeon-Add-support-for-the-UBNT-E200-board.patch -features/x86/x86-memtest-WARN-if-bad-RAM-found.patch -features/x86/x86-make-x32-syscall-support-conditional.patch +#features/mips/MIPS-increase-MAX-PHYSMEM-BITS-on-Loongson-3-only.patch +#features/mips/MIPS-Loongson-3-Add-Loongson-LS3A-RS780E-1-way-machi.patch +#features/mips/MIPS-octeon-Add-support-for-the-UBNT-E200-board.patch +#features/x86/x86-memtest-WARN-if-bad-RAM-found.patch +#features/x86/x86-make-x32-syscall-support-conditional.patch # Miscellaneous bug fixes -bugfix/all/kbuild-use-nostdinc-in-compile-tests.patch -bugfix/all/disable-some-marvell-phys.patch -bugfix/all/fs-add-module_softdep-declarations-for-hard-coded-cr.patch -bugfix/all/kbuild-do-not-use-hyphen-in-exported-variable-name.patch -bugfix/all/ext4-fix-bug-838544.patch -bugfix/all/mm-memcontrol-use-special-workqueue-for-creating-per-memcg-caches.patch -bugfix/all/kbuild-add-fno-pie.patch -bugfix/x86/scripts-has-stack-protector-add-fno-pie.patch -bugfix/x86/x86-kexec-add-fno-pie.patch +#bugfix/all/kbuild-use-nostdinc-in-compile-tests.patch +#bugfix/all/disable-some-marvell-phys.patch +#bugfix/all/fs-add-module_softdep-declarations-for-hard-coded-cr.patch +#bugfix/all/kbuild-do-not-use-hyphen-in-exported-variable-name.patch +#bugfix/all/ext4-fix-bug-838544.patch +#bugfix/all/mm-memcontrol-use-special-workqueue-for-creating-per-memcg-caches.patch +#bugfix/all/kbuild-add-fno-pie.patch +#bugfix/x86/scripts-has-stack-protector-add-fno-pie.patch +#bugfix/x86/x86-kexec-add-fno-pie.patch # Miscellaneous features # Securelevel patchset from mjg59 -features/all/securelevel/add-bsd-style-securelevel-support.patch -features/all/securelevel/enforce-module-signatures-when-securelevel-is-greate.patch -features/all/securelevel/pci-lock-down-bar-access-when-securelevel-is-enabled.patch -features/all/securelevel/x86-lock-down-io-port-access-when-securelevel-is-ena.patch -features/all/securelevel/restrict-dev-mem-and-dev-kmem-when-securelevel-is-se.patch -features/all/securelevel/acpi-limit-access-to-custom_method-if-securelevel-is.patch -features/all/securelevel/acpi-ignore-acpi_rsdp-kernel-parameter-when-securele.patch -features/all/securelevel/kexec-disable-at-runtime-if-securelevel-has-been-set.patch -features/all/securelevel/uswsusp-disable-when-securelevel-is-set.patch -features/all/securelevel/x86-restrict-msr-access-when-securelevel-is-set.patch -features/all/securelevel/asus-wmi-restrict-debugfs-interface-when-securelevel.patch -features/all/securelevel/add-option-to-automatically-set-securelevel-when-in-.patch -features/all/securelevel/efi-disable-secure-boot-if-shim-is-in-insecure-mode.patch -features/all/securelevel/hibernate-disable-when-securelevel-is-set.patch -features/all/securelevel/kexec-uefi-copy-secure_boot-flag-in-boot-params-acro.patch -features/all/securelevel/acpi-disable-acpi-table-override-if-securelevel-is-s.patch -features/all/securelevel/acpi-disable-apei-error-injection-if-securelevel-is-.patch -features/all/securelevel/enable-cold-boot-attack-mitigation.patch -features/all/securelevel/mtd-disable-slram-and-phram-when-securelevel-is-enabled.patch +#features/all/securelevel/add-bsd-style-securelevel-support.patch +#features/all/securelevel/enforce-module-signatures-when-securelevel-is-greate.patch +#features/all/securelevel/pci-lock-down-bar-access-when-securelevel-is-enabled.patch +#features/all/securelevel/x86-lock-down-io-port-access-when-securelevel-is-ena.patch +#features/all/securelevel/restrict-dev-mem-and-dev-kmem-when-securelevel-is-se.patch +#features/all/securelevel/acpi-limit-access-to-custom_method-if-securelevel-is.patch +#features/all/securelevel/acpi-ignore-acpi_rsdp-kernel-parameter-when-securele.patch +#features/all/securelevel/kexec-disable-at-runtime-if-securelevel-has-been-set.patch +#features/all/securelevel/uswsusp-disable-when-securelevel-is-set.patch +#features/all/securelevel/x86-restrict-msr-access-when-securelevel-is-set.patch +#features/all/securelevel/asus-wmi-restrict-debugfs-interface-when-securelevel.patch +#features/all/securelevel/add-option-to-automatically-set-securelevel-when-in-.patch +#features/all/securelevel/efi-disable-secure-boot-if-shim-is-in-insecure-mode.patch +#features/all/securelevel/hibernate-disable-when-securelevel-is-set.patch +#features/all/securelevel/kexec-uefi-copy-secure_boot-flag-in-boot-params-acro.patch +#features/all/securelevel/acpi-disable-acpi-table-override-if-securelevel-is-s.patch +#features/all/securelevel/acpi-disable-apei-error-injection-if-securelevel-is-.patch +#features/all/securelevel/enable-cold-boot-attack-mitigation.patch +#features/all/securelevel/mtd-disable-slram-and-phram-when-securelevel-is-enabled.patch # same for arm64 -features/all/securelevel/arm64-efi-disable-secure-boot-if-shim-is-in-insecure.patch -features/all/securelevel/arm64-add-kernel-config-option-to-set-securelevel-wh.patch +#features/all/securelevel/arm64-efi-disable-secure-boot-if-shim-is-in-insecure.patch +#features/all/securelevel/arm64-add-kernel-config-option-to-set-securelevel-wh.patch # Security fixes -bugfix/all/ptrace-being-capable-wrt-a-process-requires-mapped-uids-gids.patch -debian/i386-686-pae-pci-set-pci-nobios-by-default.patch +#bugfix/all/ptrace-being-capable-wrt-a-process-requires-mapped-uids-gids.patch +#debian/i386-686-pae-pci-set-pci-nobios-by-default.patch # ABI maintenance |