Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add patches for Intel TXT support #1

Open
wants to merge 70 commits into
base: main
Choose a base branch
from
Open

Add patches for Intel TXT support #1

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
70 commits
Select commit Hold shift + click to select a range
73913a3
Rework Archlinux packaging
fepitre Mar 9, 2023
df4f848
gitlab-ci: remove 4.1
fepitre Apr 25, 2023
d3f10e4
version 4.17.0-9
marmarek Apr 25, 2023
3e05028
version 4.17.1-1
marmarek May 23, 2023
88d40a1
Backport few patches
marmarek May 23, 2023
c18c73e
ci: update INSTALL_EXCLUDE variable name
marmarek May 23, 2023
6548eac
rpm: remove xen-qubes-vm subpackage
marmarek May 26, 2023
7d58d34
Use upstream approach for publishing ARCH_CAPS to guests
marmarek Jun 23, 2023
8d8f66a
version 4.17.1-2
marmarek Jul 2, 2023
172ff36
Apply XSA-433 fix
marmarek Jul 25, 2023
06d5e30
version 4.17.1-3
marmarek Jul 25, 2023
cd1ccd8
Apply fix for the original XSA-433 patch
marmarek Jul 31, 2023
82eaa96
version 4.17.1-4
marmarek Jul 31, 2023
fbc7e44
Rebase patches on top of 4.17.2
marmarek Aug 9, 2023
0cb44dd
Update to 4.17.2
marmarek Aug 9, 2023
d461176
Apply XSA-439 fix
marmarek Sep 21, 2023
a480b9e
Backport fix for OpenBSD 7.3 booting
marmarek Sep 21, 2023
57e8e74
Switch back to official tarballs
marmarek Sep 21, 2023
5cd1d91
version 4.17.2-2
marmarek Sep 21, 2023
9596786
Compress old console logs
marmarek Oct 6, 2023
5b6bf06
Apply patches for MSI-X support with stubdomain
marmarek Nov 14, 2022
641f36b
Apply XSA-442 patch
marmarek Oct 10, 2023
50d46d9
version 4.17.2-3
marmarek Oct 10, 2023
7c46662
rpm: remove duplicated ldconfig call
marmarek Oct 11, 2023
5cf456b
Merge remote-tracking branch 'origin/pr/169'
marmarek Oct 11, 2023
4e6714f
Merge branch 'msix'
marmarek Oct 11, 2023
719daa6
version 4.17.2-4
marmarek Oct 11, 2023
d8d557c
Apply XSA-446 patch
marmarek Nov 14, 2023
bd83029
version 4.17.2-5
marmarek Nov 14, 2023
822645c
Disable annobin for the hypervisor build
marmarek Nov 29, 2023
7d397a8
backport: x86/x2apic: introduce a mixed physical/cluster mode
marmarek Dec 3, 2023
973d80c
Backport cpupool fix
marmarek Dec 3, 2023
1a02560
version 4.17.2-6
marmarek Dec 4, 2023
7677f00
Merge remote-tracking branch 'origin/pr/171'
marmarek Dec 10, 2023
2043425
version 4.17.2-7
marmarek Dec 10, 2023
631ca94
Backport XHCI console support for AMD
marmarek Dec 27, 2023
38be433
Fix guest memory corruption caused by hvmloader
marmarek Dec 27, 2023
b567bd9
version 4.17.2-8
marmarek Jan 3, 2024
c09047e
Update to Xen 4.17.3
marmarek Jan 14, 2024
cacb1a1
Update Xen config to 4.17.3, enable DOITM
marmarek Jan 30, 2024
a98e7e7
Apply XSA-449 patch
marmarek Jan 30, 2024
f67c3d8
version 4.17.3-2
marmarek Jan 30, 2024
4ae2033
Backport IVMD fix
marmarek Feb 2, 2024
8eeb295
version 4.17.3-3
marmarek Feb 5, 2024
dd51e0a
Basic S0ix support
HW42 Feb 19, 2024
f22008f
Include patches from stable-4.17 branch
marmarek Mar 12, 2024
606f99a
Temporarily switch to a hash file for download verification
marmarek Mar 12, 2024
323d227
Apply XSA-452 patches
marmarek Mar 12, 2024
7ebe19e
version 4.17.3-4
marmarek Mar 12, 2024
2160281
Merge remote-tracking branch 'origin/main'
marmarek Mar 12, 2024
16560c6
Apply XSA-455 and XSA-456 fixes
marmarek Apr 9, 2024
b11fc66
version 4.17.3-5
marmarek Apr 9, 2024
d2e3022
Revert "Temporarily switch to a hash file for download verification"
marmarek Apr 22, 2024
bd07080
Update to 4.17.4
marmarek Apr 23, 2024
2ac9643
Backport a fix for XHCI console
marmarek Apr 24, 2024
69b8b92
Merge remote-tracking branch 'origin/pr/167'
marmarek Apr 26, 2024
46b5abf
version 4.17.4-2
marmarek Apr 26, 2024
f83cb75
archlinux: adjust makedepends
marmarek May 20, 2024
bc27283
archlinux: fix number of checksums for patches
marmarek May 20, 2024
948f153
archlinux: do not skip directory for logs
marmarek May 20, 2024
b2d5e5d
version 4.17.4-3
marmarek May 25, 2024
21dddee
Apply XSA-458 patch
marmarek Jul 15, 2024
e4266f1
version 4.17.4-4
marmarek Jul 16, 2024
31c52f7
rpm: cleanup build dependencies
marmarek Jul 16, 2024
481b198
Fix Arch build on conflicting _FORTIFY_SOURCE values
marmarek Jul 18, 2024
8cc1f5a
Merge branch 'build-deps'
marmarek Jul 19, 2024
1d786af
Add XHCI DbC console fixes
marmarek Jul 19, 2024
d282d67
version 4.17.4-5
marmarek Jul 20, 2024
cd37551
xen.spec.in: update using variables in comments
TomaszAIR May 12, 2024
413d4c8
Add patches for TrenchBoot DRTM support
TomaszAIR May 12, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 3 additions & 7 deletions .gitlab-ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,4 @@
include:
- file: /r4.1/gitlab-base.yml
project: QubesOS/qubes-continuous-integration
- file: /r4.1/gitlab-dom0.yml
project: QubesOS/qubes-continuous-integration
- file: /r4.1/gitlab-vm-archlinux.yml
project: QubesOS/qubes-continuous-integration
- file: /r4.2/gitlab-base.yml
project: QubesOS/qubes-continuous-integration
- file: /r4.2/gitlab-host.yml
Expand All @@ -13,5 +7,7 @@ include:
project: QubesOS/qubes-continuous-integration
- file: /r4.2/gitlab-vm-archlinux.yml
project: QubesOS/qubes-continuous-integration

variables:
TRAVIS_INSTALL_EXCLUDE: xen-qubes-vm xen-qubes-debug xen-qubes-debuginfo xen-hypervisor-common xen-system-amd64
CI_INSTALL_EXCLUDE: xen-qubes-vm xen-qubes-debug xen-qubes-debuginfo

10 changes: 5 additions & 5 deletions 0201-EFI-early-Add-noexit-to-inhibit-calling-ExitBootServ.patch
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,8 +22,8 @@ index e82ac9daa7ad..2221cdec681a 100644
--- a/xen/arch/x86/efi/efi-boot.h
+++ b/xen/arch/x86/efi/efi-boot.h
@@ -816,7 +816,7 @@ void __init efi_multiboot2(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *SystemTable
if ( gop )
efi_set_gop_mode(gop, gop_mode);

efi_relocate_esrt(SystemTable);

- efi_exit_boot(ImageHandle, SystemTable);
+ efi_exit_boot(ImageHandle, SystemTable, true);
Expand All @@ -39,13 +39,13 @@ index db0340c8e262..d78a315e56e0 100644
static void efi_variables(void);
static void efi_set_gop_mode(EFI_GRAPHICS_OUTPUT_PROTOCOL *gop, UINTN gop_mode);
-static void efi_exit_boot(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *SystemTable);
+static void efi_exit_boot(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *SystemTable, bool efit_boot_services);
+static void efi_exit_boot(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *SystemTable, bool exit_boot_services);

static const EFI_BOOT_SERVICES *__initdata efi_bs;
static UINT32 __initdata efi_bs_revision;
@@ -1175,7 +1175,7 @@ static void __init efi_relocate_esrt(EFI_SYSTEM_TABLE *SystemTable)
efi_bs->FreePool(memory_map);
}
#define INVALID_VIRTUAL_ADDRESS (0xBAAADUL << \
(EFI_PAGE_SHIFT + BITS_PER_LONG - 32))

-static void __init efi_exit_boot(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *SystemTable)
+static void __init efi_exit_boot(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *SystemTable, bool exit_boot_services)
Expand Down
50 changes: 0 additions & 50 deletions 0300-Relocate-the-ESRT-when-booting-via-multiboot2.patch
View file
Open in desktop

This file was deleted.

6 changes: 3 additions & 3 deletions 0306-x86-Replace-PAT_-with-X86_MT_.patch
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -162,7 +162,7 @@ index 4d2aa6def86de45aeeaade7a1a7815c5ef2b3d7a..242623f3c239ee18a44f882ecb3910a0
/* fall through */
default:
@@ -638,12 +638,12 @@ int hvm_set_mem_pinned_cacheattr(struct domain *d, uint64_t gfn_start,
rcu_read_unlock(&pinned_cacheattr_rcu_lock);
domain_unlock(d);
return -ENOENT;

- case PAT_TYPE_UC_MINUS:
Expand All @@ -181,14 +181,14 @@ index 4d2aa6def86de45aeeaade7a1a7815c5ef2b3d7a..242623f3c239ee18a44f882ecb3910a0

default:
@@ -681,7 +681,7 @@ int hvm_set_mem_pinned_cacheattr(struct domain *d, uint64_t gfn_start,
xfree(newr);

list_add_rcu(&range->list, &d->arch.hvm.pinned_cacheattr_ranges);
p2m_memory_type_changed(d);
- if ( type != PAT_TYPE_WRBACK )
+ if ( type != X86_MT_WB )
flush_all(FLUSH_CACHE);

return 0;
return rc;
diff --git a/xen/arch/x86/hvm/vmx/vmx.c b/xen/arch/x86/hvm/vmx/vmx.c
index 7c81b80710f99e08fe8291d3e413c449322b777d..b543c3983d77ae807e8bd97330691a79d8d39bae 100644
--- a/xen/arch/x86/hvm/vmx/vmx.c
Expand Down
4 changes: 2 additions & 2 deletions 0307-x86-Replace-MTRR_-constants-with-X86_MT_-constants.patch
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -95,8 +95,8 @@ index 4e01c8d6f9df6562b94438f265d79a0a6fca8de6..2946003b84938f3b83c98b62dfaa3ace
}

/* If the type is WC, check that this processor supports it */
- if ((type == MTRR_TYPE_WRCOMB) && !have_wrcomb()) {
+ if ((type == X86_MT_WC) && !have_wrcomb()) {
- if ((type == MTRR_TYPE_WRCOMB) && mtrr_have_wrcomb()) {
+ if ((type == X86_MT_WC) && !mtrr_have_wrcomb()) {
printk(KERN_WARNING
"mtrr: your processor doesn't support write-combining\n");
return -EOPNOTSUPP;
Expand Down
33 changes: 0 additions & 33 deletions 0310-x86-time-prevent-overflow-with-high-frequency-TSCs.patch
View file
Open in desktop

This file was deleted.

131 changes: 0 additions & 131 deletions 0311-x86-cpuid-Infrastructure-for-leaves-7-1-ecx-edx.patch
View file
Open in desktop

This file was deleted.

Loading