| Message ID | 20110205220830.GA6761@outflux.net |
|---|---|
| State | Accepted |
| Delegated to: | Tim Gardner |
| Headers | show |
On 02/05/2011 03:08 PM, Kees Cook wrote:
> git://kernel.ubuntu.com/kees/ubuntu-natty.git master
Do you think these will be coming via stable updates?
rtg
On Mon, Feb 07, 2011 at 06:52:19AM -0700, Tim Gardner wrote: > On 02/05/2011 03:08 PM, Kees Cook wrote: > >git://kernel.ubuntu.com/kees/ubuntu-natty.git master > > Do you think these will be coming via stable updates? Nope; they're considered features (and depend on the %pK filter that was added in .38). -Kees
On 02/07/2011 10:41 AM, Kees Cook wrote: > On Mon, Feb 07, 2011 at 06:52:19AM -0700, Tim Gardner wrote: >> On 02/05/2011 03:08 PM, Kees Cook wrote: >>> git://kernel.ubuntu.com/kees/ubuntu-natty.git master >> >> Do you think these will be coming via stable updates? > > Nope; they're considered features (and depend on the %pK filter that was > added in .38). > > -Kees > applied with minor commit log edits.
This is to replace the kallsyms 0400 protection with the %pK-usage patches, which are living in -mm at the moment... The following changes since commit 80ff90a8a268e91b4b23db3c81f985f5d216f1d5: UBUNTU: Ubuntu-2.6.38-2.29 (2011-02-04 10:00:23 +0000) are available in the git repository at: git://kernel.ubuntu.com/kees/ubuntu-natty.git master Dan Rosenberg (1): Convert net %p usage %pK Kees Cook (2): Revert "UBUNTU: SAUCE: kernel: make /proc/kallsyms mode 400 to reduce ease of attacking" use %pK for /proc/kallsyms and /proc/modules kernel/kallsyms.c | 12 +++++------- kernel/module.c | 4 ++-- lib/vsprintf.c | 2 +- net/atm/proc.c | 4 ++-- net/can/bcm.c | 6 +++--- net/ipv4/raw.c | 2 +- net/ipv4/tcp_ipv4.c | 6 +++--- net/ipv4/udp.c | 2 +- net/ipv6/raw.c | 2 +- net/ipv6/tcp_ipv6.c | 6 +++--- net/ipv6/udp.c | 2 +- net/key/af_key.c | 2 +- net/netlink/af_netlink.c | 2 +- net/packet/af_packet.c | 2 +- net/phonet/socket.c | 2 +- net/sctp/proc.c | 4 ++-- net/unix/af_unix.c | 2 +- 17 files changed, 30 insertions(+), 32 deletions(-)