Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-kernel
Navigation:
Lists: gentoo-kernel: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-kernel@g.o
From: Ned Ludd <solar@g.o>
Subject: Re: [ANNOUNCE] hardened-patches-2.6.17-1 Released
Date: Wed, 16 Aug 2006 16:43:08 -0400
On Wed, 2006-08-16 at 21:55 +0200, Christian Heim wrote:
> On Wednesday 16 August 2006 21:08, Christian Heim wrote:
> > This is an automated email to say that hardened-patches-2.6.17-1
> > has just been released.
> >
> > You can find a shortlog, broken out patches and release tarballs at:
> > http://dev.gentoo.org/~phreak/
> 
> Hrm, seems like the script needs some work ... that should have been:
> > You can find a shortlog, broken out patches and release tarballs at:
> > http://dev.gentoo.org/~phreak/hardened-sources/
> 
> >
> > Changes since 2.6.17- are as follows:
> Changes since 2.6.16-8 are as follows:
> 
> r597 (phreak):
>   M /hardened/2.6/.release
> 
> Updating the .release file
> 
> r592 (phreak):
>   A /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17-2006080121035.patch
>   D /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-2006080121035.patch
> 
> Dropping the EXTRAVERSION from the patchname.
> 
> r591 (phreak):
>   M /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-200608012135.patch
> 
> Hrm, missed a '0' after renaming the patch.
> 
> r590 (phreak):
>   M /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-200608012135.patch
> 
> Updating the headers
> 
> r581 (phreak):
>    M /hardened/2.6/trunk/2.6.17/4450_grsec-2.1.9-2.6.17.7-200608012135.patch
> 
> Removing the localversion-grsec for real!
> 
> r580 (phreak):
>   M /hardened/2.6/trunk/2.6.17/4455_linux-2.6.16-reslog.patch

Just talked with spender and he already pushed this patch 
but in a slightly diff way.

notice in hunk #3

int grsec_resource_logging; 
 int grsec_lock;
+int grsec_resource_logging;

The addition of this patch adds the symbol a second time.
And in hunk #4 we would end up with 2 sysctl entries.

#ifdef CONFIG_GRKERNSEC_RESLOG 
        grsec_resource_logging = 1;
 #endif
+#ifdef CONFIG_GRKERNSEC_RELOG
+       grsec_resource_logging = 1;
+#endif


So... This extra patch can simply be dropped.


The systrace stuff can also be dropped as it's known to 
open holes where no holes existed before.


-- 
Ned Ludd <solar@g.o>
Gentoo Linux

-- 
gentoo-kernel@g.o mailing list


References:
[ANNOUNCE] hardened-patches-2.6.17-1 Released
-- Christian Heim
Re: [ANNOUNCE] hardened-patches-2.6.17-1 Released
-- Christian Heim
Navigation:
Lists: gentoo-kernel: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: [ANNOUNCE] hardened-patches-2.6.17-1 Released
Next by thread:
[ANNOUNCE] hardened-patches-2.6.17-2 released
Previous by date:
Re: [ANNOUNCE] hardened-patches-2.6.17-1 Released
Next by date:
[ANNOUNCE] hardened-patches-2.6.17-2 released


Updated Jun 17, 2009

Summary: Archive of the gentoo-kernel mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.