-
Notifications
You must be signed in to change notification settings - Fork 10
NO_MERGE This is an example PR with an upstream commit checker github action #323
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
base: ciqlts8_6
Are you sure you want to change the base?
Conversation
- name: Clone Linux Kernel | ||
run: | | ||
echo "Cloning Linux kernel repository (bare clone, single branch, no blobs) into 'linux' directory..." | ||
git clone --bare --filter=blob:none --single-branch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git linux |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Any reason we just can't use the kernel-mainline
branch its updated daily
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It could. If you look below you'll see that the script doesn't actually checkout the kernel-src-tree repo. It uses the github api to get the commits in the PR. But yea, maybe actually checking out kernel-src-tree with its kernel-mainline branch included makes sense.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Initially the script used the github api to check the upstream kernel commits too, but that was taking forever
closing this. its served its purpose |
This is amazing! This could help us improve the quality of our tree better than RedHat's. |
Reopening for more testing |
971b5ac
to
37e3a27
Compare
jira VULN-XXXX cve CVE-2025-1234 commit 1234567890abcde1234567890abcde1234567890 This isn't a real commit Do i dont have to say anything here
jira VULN-XXXX cve CVE-2025-1234 commit a85fb91 This isn't a real commit Do i dont have to say anything here
37e3a27
to
4bd3171
Compare
025c28b
to
e6ae83a
Compare
commit 0d0f417 That is all
5e214cb
to
b82196f
Compare
🔍 Upstream Linux Kernel Commit Check
This is an automated message from the kernel commit checker workflow. |
This github actions checks the PR commits for references to upstream linux commits (lines starting with "commit <hash>") and does two things: 1. Checks that this hash exists in the upstream linux kernel history 2. Checks if there are any Fixes: references for the referenced commit in the upstream linux kernel history If either of those are found to be true a comment is added to the PR with the pertinent information. The logic for the check is provided by the check_upstream_commits.py script from kernel-src-tree-tools
b82196f
to
97a0c5d
Compare
🔍 Upstream Linux Kernel Commit Check
This is an automated message from the kernel commit checker workflow. |
This is an example PR for testing an upstream commit checker github action. It has three commits that reference upstream commits. One references a bogus upstream commit. One references an upstream commit with a single fix available. And one references an upstream commit with multiple fixes available.