From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id EC084139694 for ; Tue, 2 May 2017 15:56:55 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 5083DE0CB4; Tue, 2 May 2017 15:56:49 +0000 (UTC) Received: from mail-ua0-x231.google.com (mail-ua0-x231.google.com [IPv6:2607:f8b0:400c:c08::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 1145EE0C9A for ; Tue, 2 May 2017 15:56:44 +0000 (UTC) Received: by mail-ua0-x231.google.com with SMTP id e55so55629513uaa.2 for ; Tue, 02 May 2017 08:56:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=JLWiWpxEpkyO4zwHHgUfHWiBnG5e+5Ct3DVtZ68/qaM=; b=dsCK5dyO6On5G9Af//LEBX6I52wyNhqXlVtvyX8kh1aoO6XpYgmf4d3R/WCpRpTdiS MiV5YNfu8h02RgoIe1SSgrgEYo9hJAbU+LaxRKPo9Kopxr1IDxD2vEa5Y3qpdvZXGZi5 KT7Jah0koulik+AG8J+Xfo1skCbYeHI2X3FuK1x6ZFhsofvNNXmxgdfGtNAIec0dUpae q03AlWlIt0jLGtObdcKwyV7dVCkXPbLXbJXf1OTLBJzgElNv3dakAuXmr61TKKeaI8IC ZoHAgoVIxrocpjf46oKQagjZOQxELzqALAT/VCnKs84J9BqsrLt9he44ax3rk+sj0YCz wImQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=JLWiWpxEpkyO4zwHHgUfHWiBnG5e+5Ct3DVtZ68/qaM=; b=UR87ge2bstUpo9/WoHPEf2Ih1RFglOxGZowtgbFL41QSV2Ess4VU/Oy1++MQMvyyBs omg8uLfiAFdTdalb638mUwwFRv+lzkpn5mw1kjfl4F75cIxmZyNVTkAGX3kr5NhfzxwD MYTi+dJI9QuYC4hGg5rKaYjMJ8jDmOCY41OaYzACgjhoI3KtPIMGv4mTXelv4nT0ti/P R/Hc4vgdyMqwTAaF3ehB3EYBhSJDI3kTzuldST9wh/Pt5w6LHLfIigowub+ThJj+vl43 0glTmqXEuZjqhPXegoIWoZbbitEpFWtXZXS8JgozxiPyptcDKG67rtIlPsBRzSnfwEcg 4yDw== X-Gm-Message-State: AN3rC/7Qkdur6JExsw4+bndC/aquGq+gNhrpW5hiPWGh6b0xIYrG9deC iYH1uxpR4ihWiNexK43Ozx2eopPTHVRuG2U= X-Received: by 10.159.54.145 with SMTP id p17mr14001611uap.51.1493740603203; Tue, 02 May 2017 08:56:43 -0700 (PDT) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 Received: by 10.159.37.129 with HTTP; Tue, 2 May 2017 08:56:22 -0700 (PDT) In-Reply-To: <20170502172820.43d6b720@gentp.lnet> References: <20170501093843.GA927@gentoo.org> <20170502172820.43d6b720@gentp.lnet> From: =?UTF-8?Q?Daniel_Cegie=C5=82ka?= Date: Tue, 2 May 2017 17:56:22 +0200 Message-ID: Subject: Re: [gentoo-hardened] Technical repercussions of grsecurity removal To: gentoo-hardened@lists.gentoo.org Content-Type: text/plain; charset=UTF-8 X-Archives-Salt: 251213c5-76bd-450c-8bfb-c4f07a6777bd X-Archives-Hash: a2c198b924515895962405f4113f92b6 2017-05-02 17:28 GMT+02:00 Luis Ressel : > On Mon, 1 May 2017 09:38:43 +0000 > Sven Vermeulen wrote: > >> The obvious step is indeed to stop further *current* development on >> hardened-sources. I don't know how many additional patchsets are being >> implemented in it (blueness? Zorry?) so I don't know if it means that >> hardened-sources in total is done with or not. > > All patches in our current patchset > (hardened-patches-4.9.24-1.extras.tar.bz2) are grsec-related. Most of > them don't even touch the kernel code, but only the Kconfig's. So > unless we manage to maintain PaX, we can indeed kiss hardened-sources > goodbye. and, of course :) grep -r -e paxmark -e pax_kernel /usr/portage/