Tweak the config to use RDSEED or (fallback) RDRAND. Makes sure
we have initial random seed in cases where there is no other
random source if these are supported.
The default config in Alpine currently disables these, which makes
it pretty useless, as there is no motherboard rng support any more.
Replaces #517Fix#514Fix#183
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
Previously we used the defaults (main and community) but we
currently only need main, but are likely to need some packages
from edge soon.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
Given you can login as root with no password on the console,
asking which user you would like to login as is rather pointless.
Do have to tweak /etc/issue though as busybox getty does not display it
without a prompt, and we want a whale.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
The vsock patches were merged into mainline in v4.8-rc1, replace the patches
based on the email posting with cherry-picks. The patches appear identical so
the only change here is to the annotation of the origin which now references an
upstream commit instead of a message-id.
Add one new upstream patch b226acab2f6a "VSOCK: Use kvfree()"
Signed-off-by: Ian Campbell <ian.campbell@docker.com>
Series is at <1469716595-13591-1-git-send-email-stefanha@redhat.com>.
This corresponds to v7 of the spec, posted in
<1470324277-19300-1-git-send-email-stefanha@redhat.com>
Also add a "cherry-picked from" to the "vsock: make listener child lock
ordering explicit" patch and move it to the head of the series with the other
vsock backports.
Finally backport three new upstream fixes:
3fda5d6e5801 vhost/vsock: fix vhost virtio_vsock_pkt use-after-free
28ad55578b8a virtio-vsock: fix include guard typo
21bc54fc0cdc vhost/vsock: drop space available check for TX vq
These were made on top of the version of the vsock patches which were added to
Linux master in v4.8-rc1. This commit is based on the email posting, will
replace with with proper cherry-pick separately.
Requires corresponding backend changes in Hyperkit
Signed-off-by: Ian Campbell <ian.campbell@docker.com>
Add a database key `bundle` that contains a path to a Docker dev
bundle eg `/.../docker/bundles/1.13.0-dev` where the docker
binaries to run can be found. This will be paired with a script
in `docker/docker` to set this key, so users can easily help
contribute to Docker development.
The change will be permanent until the key is removed or a factory
reset is done, or the bundle cannot be found.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
As we do not have a simple way to hash Debian, use the Docker
sha256 until we switch to Alpine.
Signed-off-by: Justin Cormack <justin.cormack@docker.com>
