1. Forum
  2. Usenet
  3. LINUX.GENTOO.USER

  • [gentoo-user] Tracking changes in the kernel config

    From whiteman808@21:1/5 to All on Tue Jun 24 15:10:02 2025
    I want to compile gentoo-sources for educational purposes and I need recommendation how to conveniently track changes at the .config file in kernel sources directory. If you recommend Git, what setup in .gitconfig, .gitignore do you recommend?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Anna Vyalkova@21:1/5 to All on Wed Jun 25 10:30:01 2025
    On 2025-06-24, whiteman808 wrote:
    I want to compile gentoo-sources for educational purposes and I need recommendation how to conveniently track changes at the .config file in kernel sources directory. If you recommend Git, what setup in .gitconfig, .gitignore do you recommend?

    I build kernel out-of-source from a non-root user: https://wiki.gentoo.org/wiki/Kernel/Building_from_userspace

    Then I simply use Git in a build directory to commit changes every time
    after running "kmake syncconfig" or after making meaningful changes.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From whiteman808@21:1/5 to Anna Vyalkova on Sat Jun 28 18:20:01 2025
    On 25 Jun 2025, 13:21:21, Anna Vyalkova wrote:
    On 2025-06-24, whiteman808 wrote:
    I want to compile gentoo-sources for educational purposes and I need recommendation how to conveniently track changes at the .config file in kernel sources directory. If you recommend Git, what setup in .gitconfig, .gitignore do you recommend?

    I build kernel out-of-source from a non-root user: https://wiki.gentoo.org/wiki/Kernel/Building_from_userspace

    Then I simply use Git in a build directory to commit changes every time
    after running "kmake syncconfig" or after making meaningful changes.


    Is it safe to store kernel config at the GitHub public repository? Is private key used to sign kernel modules stored in the kernel config?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Peter =?UTF-8?B?QsO2aG0=?=@21:1/5 to All on Sun Jun 29 22:40:01 2025
    Am Samstag, 28. Juni 2025, 18:09:37 Mitteleuropäische Sommerzeit schrieb whiteman808:

    Is it safe to store kernel config at the GitHub public repository? Is
    private key used to sign kernel modules stored in the kernel config?

    Yes, it is safe; no, the key is not stored in the kernel .config.

    You will find in your kernel .config only the directory where your key is stored
    ( CONFIG_MODULE_SIG_KEY ). If you use the default /certs/... then make sure you dont copy that directory. Better is to change this directory to a /mnt/ usbstick/ ... ;-)

    -- Peter

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Steven Lembark@21:1/5 to Anna Vyalkova on Tue Jul 1 18:40:01 2025
    On Wed, 25 Jun 2025 13:21:21 +0500
    Anna Vyalkova <[email protected]> wrote:

    On 2025-06-24, whiteman808 wrote:
    I want to compile gentoo-sources for educational purposes and I
    need recommendation how to conveniently track changes at the
    .config file in kernel sources directory. If you recommend Git,
    what setup in .gitconfig, .gitignore do you recommend?

    I build kernel out-of-source from a non-root user: https://wiki.gentoo.org/wiki/Kernel/Building_from_userspace

    Then I simply use Git in a build directory to commit changes every
    time after running "kmake syncconfig" or after making meaningful
    changes.

    One minor change: Polluting your home dir with every build of every
    package you ever touch is a bad, bad idea -- not the least because
    you hopefully do full backups of your home dir and have no reason
    whatever to back up all of the brew-ish cruft.

    You'll find that having a /var/tmp/Build directory for this kind
    of thing simplfies life by putting the cruft on a larger volume that
    requires no backups -- use git to manage your config changes the
    rest can be re-acquired with a few wget/curl statements.

    I have a seprate volume /scratch for non-os-manged longer-lived
    stuff that doesn't require backups. The /scratch/Build directory
    has all of the git-clone-shallow workspaces for building all of
    this stuff (including the kerenl) w/ group 'bin' and 02775 mods
    (so is /opt). I can build and install it all without all of the
    SU risks -- one Perl module used to print "rm -rf /*", tie up the
    keyboard, do a File::Find for 5 seconds, then print a message "Why
    would you ever run something as root if you didn't know what it
    was doing?"

    --
    Steven Lembark
    Workhorse Computing
    [email protected]
    +1 888 359 3508

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)