1 |
On Wed, 2006-08-16 at 21:55 +0200, Christian Heim wrote: |
2 |
> On Wednesday 16 August 2006 21:08, Christian Heim wrote: |
3 |
> > This is an automated email to say that hardened-patches-2.6.17-1 |
4 |
> > has just been released. |
5 |
> > |
6 |
> > You can find a shortlog, broken out patches and release tarballs at: |
7 |
> > http://dev.gentoo.org/~phreak/ |
8 |
> |
9 |
> Hrm, seems like the script needs some work ... that should have been: |
10 |
> > You can find a shortlog, broken out patches and release tarballs at: |
11 |
> > http://dev.gentoo.org/~phreak/hardened-sources/ |
12 |
> |
13 |
> > |
14 |
> > Changes since 2.6.17- are as follows: |
15 |
> Changes since 2.6.16-8 are as follows: |
16 |
> |
17 |
> r597 (phreak): |
18 |
> M /hardened/2.6/.release |
19 |
> |
20 |
> Updating the .release file |
21 |
> |
22 |
> r592 (phreak): |
23 |
> A /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17-2006080121035.patch |
24 |
> D /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-2006080121035.patch |
25 |
> |
26 |
> Dropping the EXTRAVERSION from the patchname. |
27 |
> |
28 |
> r591 (phreak): |
29 |
> M /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-200608012135.patch |
30 |
> |
31 |
> Hrm, missed a '0' after renaming the patch. |
32 |
> |
33 |
> r590 (phreak): |
34 |
> M /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-200608012135.patch |
35 |
> |
36 |
> Updating the headers |
37 |
> |
38 |
> r581 (phreak): |
39 |
> M /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-200608012135.patch |
40 |
> |
41 |
> Removing the localversion-grsec for real! |
42 |
> |
43 |
> r580 (phreak): |
44 |
> M /hardened/2.6/trunk/2.6.17/4455_linux-2.6.16-reslog.patch |
45 |
|
46 |
Just talked with spender and he already pushed this patch |
47 |
but in a slightly diff way. |
48 |
|
49 |
notice in hunk #3 |
50 |
|
51 |
int grsec_resource_logging; |
52 |
int grsec_lock; |
53 |
+int grsec_resource_logging; |
54 |
|
55 |
The addition of this patch adds the symbol a second time. |
56 |
And in hunk #4 we would end up with 2 sysctl entries. |
57 |
|
58 |
#ifdef CONFIG_GRKERNSEC_RESLOG |
59 |
grsec_resource_logging = 1; |
60 |
#endif |
61 |
+#ifdef CONFIG_GRKERNSEC_RELOG |
62 |
+ grsec_resource_logging = 1; |
63 |
+#endif |
64 |
|
65 |
|
66 |
So... This extra patch can simply be dropped. |
67 |
|
68 |
|
69 |
The systrace stuff can also be dropped as it's known to |
70 |
open holes where no holes existed before. |
71 |
|
72 |
|
73 |
-- |
74 |
Ned Ludd <solar@g.o> |
75 |
Gentoo Linux |
76 |
|
77 |
-- |
78 |
gentoo-kernel@g.o mailing list |